On Wed, Mar 02, 2011 at 06:37:16PM +0300, Vladimir Zhbanov wrote:
> On Wed, Mar 02, 2011 at 01:10:34AM +0200, Alexander Reshetov wrote:
> ...
> > > > It was discovered that telepathy-gabble, the Jabber/XMMP connection
> > > > manager
> > > > for the Telepathy framework, is processing google:jingle
On Wed, Mar 02, 2011 at 01:10:34AM +0200, Alexander Reshetov wrote:
...
> > > It was discovered that telepathy-gabble, the Jabber/XMMP connection
> > > manager
> > > for the Telepathy framework, is processing google:jingleinfo updates
> > > without
> > > validating their origin. This may allow a
On Tue, Mar 01, 2011 at 01:45:35AM +0300, Vladimir Zhbanov wrote:
> > insufficient input validation
> Недостаточная проверка достоверности вводимых
> данных
недостаточная проверка вводимых данных
Про достоверность далее скажется.
> >
> > It was discovered that telepathy-gabble, the Jabber/XMMP
On Fri, Feb 18, 2011 at 11:51:50PM +0200, Alexander Reshetov wrote:
> insufficient input validation
Недостаточная проверка достоверности вводимых
данных
>
> It was discovered that telepathy-gabble, the Jabber/XMMP connection manager
> for the Telepathy framework, is processing google:jingleinfo up
insufficient input validation
It was discovered that telepathy-gabble, the Jabber/XMMP connection manager
for the Telepathy framework, is processing google:jingleinfo updates without
validating their origin. This may allow an attacker to trick telepathy-gabble
into relaying streamed media data th
5 matches
Mail list logo