Project

General

Profile

Bug #6690

irssi: Multiple vulnerabilities (CVE-2017-5193, CVE-2017-5194, CVE-2017-5356, CVE-2017-5195, CVE-2017-5196)

Added by Alicha CH over 2 years ago. Updated over 2 years ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Category:
Security
Target version:
-
Start date:
01/16/2017
Due date:
% Done:

100%

Estimated time:
(Total: 0.00 h)
Affected versions:
Security IDs:

Description

CVE-2017-5193: A NULL pointer dereference in the nickcmp function.

CVE-2017-5194: Use after free when receiving invalid nick message.

CVE-2017-5356: Out of bounds read when Printing the value.

CVE-2017-5195: Out of bounds read in certain incomplete control codes.

CVE-2017-5196: Out of bounds read in certain incomplete character sequences.

Fixed In Version:

irssi 0.8.21, irssi 1.0.0

References:

https://irssi.org/security/irssi_sa_2017_01.txt
http://seclists.org/oss-sec/2017/q1/26


Subtasks

Bug #6691: [3.5] irssi: Multiple vulnerabilities (CVE-2017-5193, CVE-2017-5194, CVE-2017-5356, CVE-2017-5195, CVE-2017-5196)Closed

Bug #6692: [3.4] irssi: Multiple vulnerabilities (CVE-2017-5193, CVE-2017-5194, CVE-2017-5356, CVE-2017-5195, CVE-2017-5196)Closed

Bug #6693: [3.3] irssi: Multiple vulnerabilities (CVE-2017-5193, CVE-2017-5194, CVE-2017-5356, CVE-2017-5195, CVE-2017-5196)Closed

Bug #6694: [3.2] irssi: Multiple vulnerabilities (CVE-2017-5193, CVE-2017-5194, CVE-2017-5356, CVE-2017-5195, CVE-2017-5196)Closed

History

#1 Updated by Alicha CH over 2 years ago

  • Project changed from Alpine Security to Alpine Linux
  • Category set to Security
  • Status changed from New to Closed

Also available in: Atom PDF