[3.7] quassel: Multiple vulnerabilities (CVE-2018-1000178, CVE-2018-1000179)
CVE-2018-1000178: A heap corruption of type CWE-120 exists in
quassel version 0.12.4 in quasselcore in void
DataStreamPeer::processMessage(const QByteArray &msg) datastreampeer.cpp
line 62 that allows an attacker to execute code remotely.
References:
http://www.openwall.com/lists/oss-security/2018/04/27/1
https://nvd.nist.gov/vuln/detail/CVE-2018-1000178
Patches:
https://github.com/quassel/quassel/commit/2b777e99fc9f74d4ed21491710260664a1721d1f
(master)
https://github.com/quassel/quassel/commit/18389a713a6810f57ab237b945e8ee03df857b8b
(0.12)
CVE-2018-1000179: A NULL Pointer Dereference of CWE-476 exists in
quassel version 0.12.4 in the quasselcore void
CoreAuthHandler::handle(const Login &msg) coreauthhandler.cpp line 235
that allows an attacker to cause a denial of service.
References:
http://www.openwall.com/lists/oss-security/2018/04/27/1
https://nvd.nist.gov/vuln/detail/CVE-2018-1000179
Patches:
https://github.com/quassel/quassel/commit/e17fca767d60c06ca02bc5898ced04f06d3670bd
(master)
https://github.com/quassel/quassel/commit/08bace4e9ecf08273f094c0c6aa8b3363d38ac3e
(0.12)
(from redmine: issue id 8927, created on 2018-05-23, closed on 2018-05-23)
- Changesets:
- Revision 15f02c3d by Natanael Copa on 2018-05-23T09:48:39Z:
community/quassel: security upgrade to 0.12.5 (CVE-2018-1000178,CVE-2018-1000179)
fixes #8927