Debian: DSA-5064-1: python-nbxmpp security update | LinuxSecurity.com

What Are You Looking For?

Popular Tags

Contribute
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5064-1                   [email protected]
https://www.debian.org/security/                       Moritz Muehlenhoff
January 29, 2022                      https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : python-nbxmpp
CVE ID         : CVE-2021-41055

It was discovered that missing input sanitising in python-nbxmpp, a
Jabber/XMPP Python library, could result in denial of service in clients
based on it (such as Gajim).

The oldstable distribution (buster) is not affected.

For the stable distribution (bullseye), this problem has been fixed in
version 2.0.2-1+deb11u1.

We recommend that you upgrade your python-nbxmpp packages.

For the detailed security status of python-nbxmpp please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/python-nbxmpp

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

Debian: DSA-5064-1: python-nbxmpp security update

January 29, 2022
It was discovered that missing input sanitising in python-nbxmpp, a Jabber/XMPP Python library, could result in denial of service in clients based on it (such as Gajim)

Summary

It was discovered that missing input sanitising in python-nbxmpp, a
Jabber/XMPP Python library, could result in denial of service in clients
based on it (such as Gajim).

The oldstable distribution (buster) is not affected.

For the stable distribution (bullseye), this problem has been fixed in
version 2.0.2-1+deb11u1.

We recommend that you upgrade your python-nbxmpp packages.

For the detailed security status of python-nbxmpp please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/python-nbxmpp

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

Severity
Package : python-nbxmpp
CVE ID : CVE-2021-41055

Related News

Sigstore Announces the First Stable Release of Code and Certificate Signing Tool for Python

Python Package Index Found Stuffed with AWS Keys and Malware

Python Programming: PyPl Is Rolling Out 2FA for Critical Projects, Giving Away 4,000 Security Keys

Malicious PyPI package opens backdoors on Windows, Linux, and Macs

News

Advisories

HOWTOs

Features

Verifying Linux Server Security: What Every Admin Needs to Know
What Linux, Windows & Mac OS Users Need to Know About VPNs
Complete Guide to Vulnerability Basics
How To Get Live Updates on Critical Linux Security Advisories
Best Linux Backup Solutions to Prevent Data Loss in A Ransomware Attack

About Us

Powered By

Footer Logo

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

Learn More About Our Cookie Policy