Описание
The OTR plugin for Gajim sends information in cleartext when using XHTML, which allows remote attackers to obtain sensitive information via unspecified vectors.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| gajim-otr | itp | package |
Примечания
Upstream bug: https://trac-plugins.gajim.org/ticket/145
Upstream fix: https://trac-plugins.gajim.org/changeset/c7c2e519ed63377bc943dd01c4661b0fe49321ae
https://www.openwall.com/lists/oss-security/2016/10/30/2
Связанные уязвимости
CVSS3: 7.5
nvd
около 9 лет назад
The OTR plugin for Gajim sends information in cleartext when using XHTML, which allows remote attackers to obtain sensitive information via unspecified vectors.
CVSS3: 7.5
github
больше 3 лет назад
The OTR plugin for Gajim sends information in cleartext when using XHTML, which allows remote attackers to obtain sensitive information via unspecified vectors.