Check origin of roster pushes MCabber is vulnerable to roster push attacks as described by Daniel Gultsch at https://gultsch.de/gajim_roster_push_and_message_interception.html. This patch should fix the problem by checking the sender of the iq:roster stanzas. Thanks to Sam Whited for the report.

[Desktop Entry]
Encoding=UTF-8
Type=Application
Name=MCabber
GenericName=Jabber IM Client
Comment=Console Jabber Client
Exec=mcabber
Terminal=true
Categories=ConsoleOnly;System;Network;InstantMessaging;Chat;