| Release | Version |
|---|---|
| stretch | 2.4.0-3+deb9u1 |
| buster | 2.7.0-1 |
| bullseye | 2.7.0-2 |
| bookworm | 2.7.0-4 |
| trixie | 2.7.0-7 |
| sid | 2.7.0-7 |
| Bug | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|---|---|
| CVE-2017-18226 | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | vulnerable | vulnerable | The Gentoo net-im/jabberd2 package through 2.6.1 sets the ownership of ... |
| Bug | Description |
|---|---|
| CVE-2017-18225 | The Gentoo net-im/jabberd2 package through 2.6.1 installs jabberd, jab ... |
| CVE-2017-10807 | JabberD 2.x (aka jabberd2) before 2.6.1 allows anyone to authenticate ... |
| CVE-2015-2058 | c2s/c2s.c in Jabber Open Source Server 2.3.2 and earlier truncates dat ... |
| CVE-2012-3525 | s2s/out.c in jabberd2 2.2.16 and earlier does not verify that a reques ... |
| CVE-2011-1755 | jabberd2 before 2.2.14 does not properly detect recursion during entit ... |
| CVE-2006-1329 | The SASL negotiation in Jabber Studio jabberd before 2.0s11 allows rem ... |
| DSA / DLA | Description |
|---|---|
| DSA-3902-1 | jabberd2 - security update |