It was discovered that Tkabber [1], a GUI client for XMPP (Jabber)
instant messaging protocol, was affected by a bug in the implementation
of the STARTTLS protocol (an ability to upgrade a TCP stream to TLS) in
Google Talk XMPP servers. Under certain circumstances, this bug prevents
XMPP clients, including Tkabber, from using TLS when connecting to these
servers. This problem was registered as a Debian bug #505103.
A workaround was provided in the upstream development version. The
problem is worked around by disabling explicit specification of TLS/SSL
protocol versions for usage by OpenSSL during the handshake with a server.
The one-line patch [2] integrated into 0.11.1-3 solves the problem with
connecting to Google Talk servers (it was verified it doesn't affect
connections to servers which correctly implement STARTTLS).
Please unblock tkabber 0.11.1-3 from entering testing.
1. http://packages.qa.debian.org/t/tkabber.html
2.
http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=5;filename=ssl-gtalk-workaround.patch;att=1;bug=505103
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
