Search for packages
Package details: pkg:deb/debian/mcabber@0.10.1-3
purl pkg:deb/debian/mcabber@0.10.1-3
Next non-vulnerable version 1.0.4-1.1
Latest non-vulnerable version 1.0.4-1.1
Risk 3.4
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-nq93-zvcm-aaag
Aliases:
CVE-2017-5604
An incorrect implementation of "XEP-0280: Message Carbons" in multiple XMPP clients allows a remote attacker to impersonate any user, including contacts, in the vulnerable application's display. This allows for various kinds of social engineering attacks. This CVE is for mcabber 1.0.0 - 1.0.4.
1.0.4-1.1
Affected by 0 other vulnerabilities.
VCID-zzxx-ws55-aaaq
Aliases:
CVE-2016-9928
MCabber before 1.0.4 is vulnerable to roster push attacks, which allows remote attackers to intercept communications, or add themselves as an entity on a 3rd party's roster as another user, which will also garner associated privileges, via crafted XMPP packets.
1.0.4-1.1
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2025-06-21T15:40:18.624584+00:00 Debian Oval Importer Affected by VCID-zzxx-ws55-aaaq https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-21T12:04:07.380829+00:00 Debian Oval Importer Affected by VCID-nq93-zvcm-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.3
2025-06-20T23:27:15.546436+00:00 Debian Oval Importer Affected by VCID-nq93-zvcm-aaag None 36.1.3
2025-06-20T22:55:58.631252+00:00 Debian Oval Importer Affected by VCID-zzxx-ws55-aaaq None 36.1.3
2025-06-08T13:17:34.897483+00:00 Debian Oval Importer Affected by VCID-zzxx-ws55-aaaq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.1.0
2025-06-08T08:34:31.293157+00:00 Debian Oval Importer Affected by VCID-zzxx-ws55-aaaq https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-08T05:12:22.612079+00:00 Debian Oval Importer Affected by VCID-nq93-zvcm-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.1.0
2025-06-07T16:50:10.716427+00:00 Debian Oval Importer Affected by VCID-nq93-zvcm-aaag None 36.1.0
2025-06-07T16:19:14.686960+00:00 Debian Oval Importer Affected by VCID-zzxx-ws55-aaaq None 36.1.0
2025-04-12T22:07:55.002094+00:00 Debian Oval Importer Affected by VCID-nq93-zvcm-aaag https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-12T19:05:35.475047+00:00 Debian Oval Importer Affected by VCID-zzxx-ws55-aaaq https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 36.0.0
2025-04-08T07:05:55.809554+00:00 Debian Oval Importer Affected by VCID-zzxx-ws55-aaaq https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-08T03:43:19.862915+00:00 Debian Oval Importer Affected by VCID-nq93-zvcm-aaag https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2 36.0.0
2025-04-07T15:22:56.023775+00:00 Debian Oval Importer Affected by VCID-nq93-zvcm-aaag None 36.0.0
2025-04-07T14:50:54.213914+00:00 Debian Oval Importer Affected by VCID-zzxx-ws55-aaaq None 36.0.0