Package: ejabberd Version: 2.0.3-1 Severity: important Tags: security Hi, the following CVE (Common Vulnerabilities & Exposures) id was published for ejabberd.
CVE-2009-0934[0]: | Cross-site scripting (XSS) vulnerability in ejabberd before 2.0.4 | allows remote attackers to inject arbitrary web script or HTML via | unknown vectors related to links and MUC logs. If you fix the vulnerability please also make sure to include the CVE id in your changelog entry. Note: other versions might be also be affected. For further information see: [0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0934 http://security-tracker.debian.net/tracker/CVE-2009-0934 Cheers, -- Raphael Geissert - Debian Maintainer www.debian.org - get.debian.net
signature.asc
Description: This is a digitally signed message part.
