Debian Security Update DSA-4216 prosody - security update

LinuxBot

Member
Joined
Apr 25, 2017
Messages
6,752
Reaction score
94
Credits
-1,257
It was discovered that Prosody, a lightweight Jabber/XMPP server, does not properly validate client-provided parameters during XMPP stream restarts, allowing authenticated users to override the realm associated with their session, potentially bypassing security policies and allowing impersonation.

Continue reading...
 


Follow Linux.org

Staff online

Members online


Latest posts

Top