CVE-2015-8688

Debian Bug report logs - #809900 gajim: CVE-2015-8688: Message interception due to unverified origin of roster push Package: src:gajim; Maintainer for src:gajim is Debian XMPP Maintainers <pkg-xmpp-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 4 Jan 2016 19:49:08 UTC ...

Debian Bug report logs - #845258 mcabber: CVE-2016-9928: remote attacker can modify the roster and intercept messages via a crafted roster-push IQ stanza Package: src:mcabber; Maintainer for src:mcabber is Debian XMPP Maintainers <pkg-xmpp-devel@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg ...