Re: [Pidgin] #16310: Cyrillic domains (*.рф) doesn't works on XMPP
Pidgin
trac at pidgin.im
Mon Oct 13 11:32:08 EDT 2014
#16310: Cyrillic domains (*.рф) doesn't works on XMPP
------------------------------+------------------------
Reporter: pizdoliz | Owner:
Type: defect | Status: new
Milestone: | Component: libpurple
Version: 2.10.9 | Resolution:
Keywords: russian cyrillic |
------------------------------+------------------------
Comment (by xnyhps):
{{{
(21:12:44) jabber: Got a result iq with id purplefd4ee715 from
прыщеблядь.рф instead of expected прыщеблядь.ррb82723ad853!
}}}
This looks like something was wrong with the patch for
> * Prevent spoofing of iq replies by verifying that the 'from' address
matches the 'to' address of the iq request. (Discovered by Fabian
Yamaguchi and Christian Wressnegger of the University of Goettingen, fixed
by Thijs Alkemade) (CVE-2013-6483)
Perhaps a problem with unicode?
`прыщеблядь.ррb82723ad853` somehow contains some data from the user's own
resource... (it should be `прыщеблядь.рф`).
--
Ticket URL: <https://developer.pidgin.im/ticket/16310#comment:5>
Pidgin <https://pidgin.im>
Pidgin
More information about the Tracker
mailing list