Oval Definition:oval:org.opensuse.security:def:20175603
Revision Date:2022-06-30Version:1
Title:CVE-2017-5603
Description:

An incorrect implementation of "XEP-0280: Message Carbons" in multiple XMPP clients allows a remote attacker to impersonate any user, including contacts, in the vulnerable application's display. This allows for various kinds of social engineering attacks. This CVE is for Jitsi 2.5.5061 - 2.9.5544.
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2017-5603
SUSE CVE-2017-5603
Platform(s):openSUSE Tumbleweed
Product(s):
Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • libqxmpp-devel-1.4.0-1.2 is installed
  • OR libqxmpp-doc-1.4.0-1.2 is installed
  • OR libqxmpp3-1.4.0-1.2 is installed
  • OR libqxmpp3-32bit-1.4.0-1.2 is installed
    • BACK