6 matches found
openSUSE Security Update : telepathy-gabble (openSUSE-SU-2011:0303-1)
This update of telepathy-gabble is validating the origin of a google:jingleinfo update message now. Not validating the origin could be used to intercept calls. CVE-2011-1000: CVSS v2 Base Score: 6.4 AV:N/AC:L/Au:N/C:P/I:P/A:N: Input Validation CWE-20 %NASLMINLEVEL 70300 C Tenable Network Security...
openSUSE Security Update : telepathy-gabble (openSUSE-SU-2011:0303-1)
This update of telepathy-gabble is validating the origin of a google:jingleinfo update message now. Not validating the origin could be used to intercept calls. CVE-2011-1000: CVSS v2 Base Score: 6.4 AV:N/AC:L/Au:N/C:P/I:P/A:N: Input Validation CWE-20 %NASLMINLEVEL 70300 C Tenable Network Security...
Fedora Update for telepathy-gabble FEDORA-2011-1903
Check for the Version of telepathy-gabble OpenVAS Vulnerability Test Fedora Update for telepathy-gabble FEDORA-2011-1903 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modi...
Fedora Update for telepathy-glib FEDORA-2011-1903
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for telepathy-gabble FEDORA-2011-1903
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Ubuntu 9.10 / 10.04 LTS / 10.10 : telepathy-gabble vulnerability (USN-1067-1)
It was discovered that Gabble did not verify the from field of google jingleinfo updates. This could allow a remote attacker to perform man in the middle attacks MITM on streamed media. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu...