[ejabberd] Vulnerability in 2.0.4

Mickael Remond mickael.remond at process-one.net
Thu Mar 19 18:08:28 MSK 2009


To my knowledge they are reporting the fix we have put in 2.0.4.
If you do not use mod_muc_log, there is no risk.

Jeffrey Rogiers wrote:

> http://www.securityfocus.com/bid/34133
> http://secunia.com/advisories/34340/
> I've seen this reported in various places, but I haven't seen a patch
> anywhere. Has this been addressed?
> Thanks,
> Jeffrey Rogiers
> _______________________________________________
> ejabberd mailing list
> ejabberd at jabber.ru
> http://lists.jabber.ru/mailman/listinfo/ejabberd

Mickaël Rémond

More information about the ejabberd mailing list