Next jabberd2 release is available. Get 2.2.17 release at GitHub: https://github.com/downloads/Jabberd2/jabberd2/jabberd-2.2.17.tar.xz
and read: https://github.com/Jabberd2/jabberd2/blob/551be78f27/UPGRADE This is an importand security release targeted at recent discovery of Vulnerability in XMPP Server Dialback Implementations. ChangeLog: * Fixed possibility of Unsolicited Dialback Attacks * Use XML_SetHashSalt with expat 2.1.x only * Fix s2s crash with witelist enabled * Send user creation result only if there is one * Utilize XML_SetHashSalt * Replaced cppunit with check * Fixed s2s->dns_bad key memory allocation * Fixed whitelist_domains memory allocation * Fixed build with debug disabled For a full ChangeLog see: https://github.com/Jabberd2/jabberd2/blob/551be78f27/ChangeLog -- Tomasz Sterna Instant Messaging Consultant : Open Source Developer http://tomasz.sterna.tv/ http://www.xiaoka.com/portfolio
