Date: Wed, 26 Jul 2017 08:27:21 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-ports-bugs@FreeBSD.org Subject: [Bug 221014] net-im/jabberd2 CVE-2017-10807 Message-ID: <bug-221014-13@https.bugs.freebsd.org/bugzilla/>
next in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D221014 Bug ID: 221014 Summary: net-im/jabberd2 CVE-2017-10807 Product: Ports & Packages Version: Latest Hardware: Any OS: Any Status: New Severity: Affects Only Me Priority: --- Component: Individual Port(s) Assignee: freebsd-ports-bugs@FreeBSD.org Reporter: lampa@fit.vutbr.cz The Jabberd, before 2.6.1 allows anyone to authenticate SASL ANONYMOUS, even when sasl.anonymous c2s.xml option is not enabled. Please, update port to 2.6.1. --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-221014-13>