FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

prosody -- multiple vulnerabilities

Affected packages
prosody < 0.9.9

Details

VuXML ID 842cd117-ba54-11e5-9728-002590263bf5
Discovery 2016-01-08
Entry 2016-01-14

The Prosody Team reports:

Fix path traversal vulnerability in mod_http_files (CVE-2016-1231)

Fix use of weak PRNG in generation of dialback secrets (CVE-2016-1232)

[source]

References

CVE Name CVE-2016-1231
CVE Name CVE-2016-1232
FreeBSD PR ports/206150
URL http://blog.prosody.im/prosody-0-9-9-security-release/

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.