Advisories ยป MGASA-2014-0057

Updated ejabberd package fixes security vulnerabilities

Publication date: 12 Feb 2014
Type: security
Affected Mageia releases : 3
CVE: CVE-2013-6169

Description

The TLS driver in ejabberd before 2.1.12 supports (1) SSLv2 and (2)
weak SSL ciphers, which makes it easier for remote attackers to obtain
sensitive information via a brute-force attack (CVE-2013-6169).
                

References

SRPMS

3/core