This bug was fixed in the package libotr - 3.2.0-4ubuntu0.2
---------------
libotr (3.2.0-4ubuntu0.2) precise-security; urgency=low
* SECURITY UPDATE: disable insecure OTRv1 protocol to prevent downgrade
attacks (LP: #1266016)
- Add disable_otr_v1.patch, patch taken from Debian
-- Felix Geyer <[email protected]> Sat, 04 Jan 2014 13:22:42 +0100
** Changed in: libotr (Ubuntu Precise)
Status: Incomplete => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1266016
Title:
Disable insecure OTRv1 protocol
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/libotr/+bug/1266016/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
