User: Password:
|
|
Subscribe / Log in / New account

Mageia alert MGASA-2014-0057 (ejabberd)

From:  Mageia Updates <buildsystem-daemon@mageia.org>
To:  updates-announce@ml.mageia.org
Subject:  [updates-announce] MGASA-2014-0057: Updated ejabberd package fixes security vulnerabilities
Date:  Wed, 12 Feb 2014 18:08:46 +0100
Message-ID:  <20140212170846.33D685C5D3@valstar.mageia.org>

MGASA-2014-0057 - Updated ejabberd package fixes security vulnerabilities Publication date: 12 Feb 2014 URL: http://advisories.mageia.org/MGASA-2014-0057.html Type: security Affected Mageia releases: 3 CVE: CVE-2013-6169 Description: The TLS driver in ejabberd before 2.1.12 supports (1) SSLv2 and (2) weak SSL ciphers, which makes it easier for remote attackers to obtain sensitive information via a brute-force attack (CVE-2013-6169). References: - https://bugs.mageia.org/show_bug.cgi?id=11447 - http://www.mandriva.com/en/support/security/advisories/mb... - http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6169 SRPMS: - 3/core/ejabberd-2.1.13-1.mga3


(Log in to post comments)


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds