MGASA-2016-0384

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2016-0384.html

Import Source

https://advisories.mageia.org/MGASA-2016-0384.json

JSON Data

https://api.osv.dev/v1/vulns/MGASA-2016-0384

Related

CVE-2016-7553

Published

2016-11-17T23:40:52Z

Modified

2016-11-17T23:30:18Z

Summary

Updated irssi packages fix security vulnerability

Details

An information disclosure vulnerability was found in the buf.pl core script for irssi. Other users on the same machine may be able to retrieve the whole window contents after /UPGRADE when the buf.pl script is loaded. Furthermore, this dump of the windows contents is never removed afterwards (CVE-2016-7553).

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:5 / irssi

Package

Name: irssi
Purl: pkg:rpm/mageia/irssi?distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.8.20-1.mga5

Ecosystem specific

{
    "section": "core"
}