Common Vulnerabilities and Exposures assigned an identifier CVE-2006-1329 to the following vulnerability: The SASL negotiation in Jabber Studio jabberd before 2.0s11 allows remote attackers to cause a denial of service ( " c2s segfault " ) by sending a " response stanza before an auth stanza " . References: http://article.gmane.org/gmane.network.jabber.admin/27372 http://www.securityfocus.com/bid/17155 http://www.frsirt.com/english/advisories/2006/1009 http://secunia.com/advisories/19281 http://xforce.iss.net/xforce/xfdb/25334
Created attachment 292120 [details] Upstream Patch Patch found by diff of s11 to s10
F-7 and F-8 are already at 2.0s11 and rawhide uses 2.1.21 so that this is fixed since 2006: * Tue Apr 04 2006 Adrian Reber <adrian> - 2.0-0.s11.9 - updated to 2.0-0.s11
Since all child bug use same source I track code change here. commited into trunk as rev 136306.