DEBIAN-CVE-2022-45197
- Source
- https://security-tracker.debian.org/tracker/CVE-2022-45197
- Import Source
- https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2022-45197.json
- JSON Data
- https://api.osv.dev/v1/vulns/DEBIAN-CVE-2022-45197
- Upstream
- Published
- 2022-12-25T05:15:11Z
- Modified
- 2025-09-25T07:41:37.900881Z
- Summary
- [none]
- Details
-
Slixmpp before 1.8.3 lacks SSL Certificate hostname validation in XMLStream, allowing an attacker to pose as any server in the eyes of Slixmpp.
- References
Affected packages
Debian:11 / slixmpp
Package
- Name
- slixmpp
- Purl
- pkg:deb/debian/slixmpp?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
1.*
1.7.0-2
1.7.1-1
1.8.0-1
1.8.0-2
1.8.1-1
1.8.2-1
1.8.2-2
1.8.3-1
1.8.4-1
1.8.4-2
1.8.4-3~bpo12+1
1.8.4-3
1.8.4-4
1.8.4-5
1.8.4-6
1.8.4+git20231219.76a11d4899-1
1.8.4+git20231228.9b090df860-1
1.8.4+git20231229.c25305e80f-1
1.8.4+git20231229.c25305e80f-2
1.8.5-1~bpo12+1
1.8.5-1
1.8.6-1~bpo12+1
1.8.6-1
1.9.0-1
1.9.0-2
1.9.1-1
1.10.0-1~bpo12+1
1.10.0-1
1.11.0-1
Debian:12 / slixmpp
Package
- Name
- slixmpp
- Purl
- pkg:deb/debian/slixmpp?arch=source
Debian:13 / slixmpp
Package
- Name
- slixmpp
- Purl
- pkg:deb/debian/slixmpp?arch=source
Debian:14 / slixmpp
Package
- Name
- slixmpp
- Purl
- pkg:deb/debian/slixmpp?arch=source