[ejabberd] Vulnerability in 2.0.4

Jeffrey Rogiers jeffrey.rogiers at gmail.com
Thu Mar 19 18:39:59 MSK 2009


Thank you for the clarification.

Thanks,
Jeffrey Rogiers



On Thu, Mar 19, 2009 at 11:08 AM, Mickael Remond
<mickael.remond at process-one.net> wrote:
> Hello,
>
> To my knowledge they are reporting the fix we have put in 2.0.4.
> If you do not use mod_muc_log, there is no risk.
>
> Jeffrey Rogiers wrote:
>
>> http://www.securityfocus.com/bid/34133
>> http://secunia.com/advisories/34340/
>>
>> I've seen this reported in various places, but I haven't seen a patch
>> anywhere. Has this been addressed?
>>
>> Thanks,
>> Jeffrey Rogiers
>> _______________________________________________
>> ejabberd mailing list
>> ejabberd at jabber.ru
>> http://lists.jabber.ru/mailman/listinfo/ejabberd
>
> --
> Mickaël Rémond
>  http://www.process-one.net/
> _______________________________________________
> ejabberd mailing list
> ejabberd at jabber.ru
> http://lists.jabber.ru/mailman/listinfo/ejabberd
>


More information about the ejabberd mailing list