Information on source package mcabber

Available versions

ReleaseVersion
jessie0.10.2-1
stretch1.0.4-1.1
buster1.1.0-1.1
sid1.1.0-1.1

Open issues

BugjessiestretchbustersidDescription
CVE-2016-9928vulnerable (no DSA)fixedfixedfixedMCabber before 1.0.4 allows remote attackers to modify the roster and intercept messages via a crafted roster-push IQ stanza

Resolved issues

BugDescription
CVE-2017-5604An incorrect implementation of "XEP-0280: Message Carbons" in multiple ...
CVE-2009-3720The updatePosition function in lib/xmltok_impl.c in libexpat in Expat ...
CVE-2009-3560The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, a ...

Security announcements

DSA / DLADescription
DLA-724-1mcabber - security update

Search for package or bug name: Reporting problems