Slixmpp before 1.8.3 lacks SSL Certificate hostname validation in XMLStream, allowing an attacker to pose as any server in the eyes of Slixmpp.
{ "binaries": [ { "binary_version": "1.2.2-1.1build2", "binary_name": "python3-slixmpp" }, { "binary_version": "1.2.2-1.1build2", "binary_name": "python3-slixmpp-lib" } ] }
{ "binaries": [ { "binary_version": "1.4.2-1build2", "binary_name": "python3-slixmpp" }, { "binary_version": "1.4.2-1build2", "binary_name": "python3-slixmpp-lib" } ] }
{ "binaries": [ { "binary_version": "1.7.1-1build1", "binary_name": "python3-slixmpp" }, { "binary_version": "1.7.1-1build1", "binary_name": "python3-slixmpp-lib" } ] }