4.1.6

DATE	CVE	VULNERABILITY TITLE	RISK
2017-01-12	CVE-2016-10027	Race Condition vulnerability in multiple products Race condition in the XMPP library in Smack before 4.1.9, when the SecurityMode.required TLS setting has been set, allows man-in-the-middle attackers to bypass TLS protections and trigger use of cleartext for client authentication by stripping the "starttls" feature from a server response. network high complexity igniterealtime fedoraproject CWE-362	5.9