VDB

GCVE-110-MAGEIA-2016-46

GCVE-110-MAGEIA-2016-46
Advisory Published
Vulnetix · Advisory published February 5, 2016
Gajim before 0.16.5 doesn't verify the origin of roster pushes thus allowing third parties to modify the roster via a man-in-the-middle attack (CVE-2015-8688).

Affected Products

VendorProductVersionsPlatforms
Mageiadolphin-emu4.0.2-8.5406.2.2.mga5.tainted (unaffected), 0 (affected)
Mageiapython-nbxmpp0 (affected), 0 (affected), 0.5.3-1.mga5 (unaffected), 0.5.3-1.mga5 (unaffected)
Mageiagajim0 (affected), 0.16.5-1.mga5 (unaffected), 0.16.5-1.mga5 (unaffected), 0 (affected)

Browse GCVE Records

72,921 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›