openSUSE-SU-2018:0475-1

Import Source

JSON Data

https://api.osv.dev/v1/vulns/openSUSE-SU-2018:0475-1

Related

Published

2018-02-19T08:15:17Z

Modified

2018-02-19T08:15:17Z

Summary

Security update for irssi

Details

This update for irssi fixes the following security issues:

CVE-2018-7054: Use after free when server is disconnected during netsplits
CVE-2018-7053: Use after free when SASL messages are received in unexpected order
CVE-2018-7050: Null pointer dereference when an 'empty' nick has been observed
CVE-2018-7052: When the number of windows exceed the available space, Irssi would crash due to Null pointer dereference
CVE-2018-7051: Certain nick names could result in out of bounds access when printing theme strings

References

Affected packages

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.1.1-43.1

{
    "binaries": [
        {
            "irssi-devel": "1.1.1-43.1",
            "irssi": "1.1.1-43.1"
        }
    ]
}