Summary: | <net-im/gajim-0.16.6-r1: XEP-0146 makes it possible to extract plain-text from OTR sessions (CVE-2016-10376) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Agostino Sarubbo <ago> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | aidecoe |
Priority: | Normal | Flags: | stable-bot:
sanity-check+
|
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://bugzilla.redhat.com/show_bug.cgi?id=1456363 | ||
Whiteboard: | B3 [glsa cve] | ||
Package list: |
=net-im/gajim-0.16.6-r1
|
Runtime testing required: | Yes |
Description
Agostino Sarubbo
2017-05-29 15:00:14 UTC
gajim-0.16.6-r1 with the fix is in the tree. amd64 stable x86 stable arm stable ppc64 stable ppc stable. Maintainer(s), please cleanup. Security, please vote. Arches, Thank you for your work. New GLSA Request filed. Maintainer(s), please drop the vulnerable version(s). Dropped 0.16.6. This issue was resolved and addressed in GLSA 201707-14 at https://security.gentoo.org/glsa/201707-14 by GLSA coordinator Thomas Deutschmann (whissi). |