[SECURITY] Fedora 43 Update: prosody-13.0.5-1.fc43

Prosody is a flexible communications server for Jabber/XMPP written in Lua. It aims to be easy to use, and light on resources. For developers it aims to be easy to extend and give a flexible system on which to rapidly develop added functionality, or prototype new protocols...

EUVD-2007-1458

Malware in sbrugna...

EUVD-2014-3644

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2014-3698

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The jabberidnvalidate function in jutil.c in the Jabber protocol plugin in libpurple in Pidgin before 2.10.10 allows remote attackers to obtain sensitive...

The vulnerability of the XML Handler component, a cross-platform messaging client for the Jabber protocol, allows attackers to influence the integrity of the system.

The vulnerability of the XML Handler component in the cross-platform messaging application for the Jabber protocol, Gajim, is related to the creation of XML fragments that allow for editing messages that were not sent by other users. Exploiting this vulnerability can enable a malicious actor to...

SUSE CVE-2013-6483

The XMPP protocol plugin in libpurple in Pidgin before 2.10.8 does not properly determine whether the from address in an iq reply is consistent with the to address in an iq request, which allows remote attackers to spoof iq traffic or cause a denial of service NULL pointer dereference and...

Gajim has an unspecified vulnerability

Gajim is a suite of free instant messaging software based on the Jabber communication protocol developed by the Gajim project. The software is written in the GTK+ suite and supports paged chat windows, group discussions, emoticon patterns and more. A security vulnerability exists in Gajim 0.16.7...

Gajim Message Interception Vulnerability

Gajim is a suite of free instant messaging software based on the Jabber communication protocol developed by the Gajim project. A security vulnerability exists in versions of Gajim prior to 0.16.5, which can be exploited by remote attackers to modify the roster and intercept messages with the help...

CVE-2014-3698

The jabberidnvalidate function in jutil.c in the Jabber protocol plugin in libpurple in Pidgin before 2.10.10 allows remote attackers to obtain sensitive information from process memory via a crafted XMPP message...

CVE-2014-3698

The jabberidnvalidate function in jutil.c in the Jabber protocol plugin in libpurple in Pidgin before 2.10.10 allows remote attackers to obtain sensitive information from process memory via a crafted XMPP message...

Memory corruption

The jabberidnvalidate function in jutil.c in the Jabber protocol plugin in libpurple in Pidgin before 2.10.10 allows remote attackers to obtain sensitive information from process memory via a crafted XMPP message...

CVE-2014-3698

The jabberidnvalidate function in jutil.c in the Jabber protocol plugin in libpurple in Pidgin before 2.10.10 allows remote attackers to obtain sensitive information from process memory via a crafted XMPP message...

CVE-2014-3698

CVE-2014-3698 affects Pidgin/libpurple (Jabber/XMPP) via the jabber_idn_validate function in jutil.c. A crafted XMPP message can cause the process to disclose memory belonging to the pidgin process (information disclosure). Upstream references and security advisories document this alongside relat...

UBUNTU-CVE-2014-3698

The jabberidnvalidate function in jutil.c in the Jabber protocol plugin in libpurple in Pidgin before 2.10.10 allows remote attackers to obtain sensitive information from process memory via a crafted XMPP message...

[SECURITY] Fedora 15 Update: psi-0.14-7.fc15

Psi is the premiere Instant Messaging application designed for Microsoft Windows, Apple Mac OS X and GNU/Linux. Built upon an open protocol named Jabber, Psi is a fast and lightweight messaging client that utilises the be st in open source technologies. Psi contains all the features necessary to...

DEBIAN-CVE-2009-3085

The XMPP protocol plugin in libpurple in Pidgin before 2.6.2 does not properly handle an error IQ stanza during an attempted fetch of a custom smiley, which allows remote attackers to cause a denial of service application crash via XHTML-IM content with cid: images...

DEBIAN-CVE-2009-3026

protocols/jabber/auth.c in libpurple in Pidgin 2.6.0, and possibly other versions, does not follow the "require TLS/SSL" preference when connecting to older Jabber servers that do not follow the XMPP specification, which causes libpurple to connect to the server without the expected encryption an...

Inkscape multiple security vulnerabilities

Format string vulnerability in URIs displaying, security problems with Jabber protocol...

Format string

Format string vulnerability in the whiteboard Jabber protocol in Inkscape before 0.45.1 allows user-assisted remote attackers to execute arbitrary code via unspecified vectors...

CVE-2007-1464

Format string vulnerability in the whiteboard Jabber protocol in Inkscape before 0.45.1 allows user-assisted remote attackers to execute arbitrary code via unspecified vectors...