CVE-2015-2058
Publication date 12 August 2015
Last updated 24 July 2024
Ubuntu priority
c2s/c2s.c in Jabber Open Source Server 2.3.2 and earlier truncates data without ensuring it remains valid UTF-8, which allows remote authenticated users to read system memory or possibly have other unspecified impact via a crafted JID.
Status
Package | Ubuntu Release | Status |
---|---|---|
jabberd2 | ||
18.04 LTS bionic |
Not affected
|
|
16.04 LTS xenial |
Not affected
|
|
14.04 LTS trusty | Not in release | |