AVG-284

Package gajim
Status Fixed
Severity High
Type information disclosure
Affected 0.16.7-1
Fixed 0.16.8-1
Current 1.0.3-2 [community]
Ticket None
Created Wed May 31 16:10:18 2017
Issue Severity Remote Type Description
CVE-2016-1037 High Yes Information disclosure
Gajim through 0.16.7 unconditionally implements the "XEP-0146: Remote Controlling Clients" extension. This can be abused by malicious XMPP servers to, for...
Date Advisory Package Description
05 Jun 2017 ASA-201706-4 gajim information disclosure
References
https://dev.gajim.org/gajim/gajim/issues/8378
https://dev.gajim.org/gajim/gajim/commit/cb65cfc5aed9efe05208ebbb7fb2d41fcf7253cc