[ubuntu/artful-security] irssi 1.0.4-1ubuntu2.3 (Accepted)
Leonidas S. Barbosa
leo.barbosa at canonical.com
Tue Mar 6 13:41:13 UTC 2018
irssi (1.0.4-1ubuntu2.3) artful-security; urgency=medium
* SECURITY UPDATE: Null pointer dereference
- debian/patches/CVE-2018-7050.patch: check if
nick is Null in src/fe-common/core/chat-completion.c.
- CVE-2018-7050
* SECURITY UPDATE: Certain nick names result in out-of-bounds
access
- debian/patches/CVE-2018-7051.patch: don't read beyond end of
escaped string in src/fe-common/core/themes.c.
- CVE-2018-7051
* SECURITY UPDATE: Null pointer dereference
- debian/patches/CVE-2018-7052.patch: check if window parent
is Null in src/fe-text/mainwindows.c.
- CVE-2018-7052
* SECURITY UPDATE: use-after-free
- debian/patches/CVE-2018-7053.patch: avoiding
reuse sasl timeout in src/irc/core/sasl.c.
- CVE-2018-7073
* SECURITY UPDATE: use-after-free
- debian/patches/CVE-2018-7054.patch: fix in
src/fe-common/irc/fe-netjoin.c, src/fe-common/irc/fe-netsplit.c.
- CVE-2018-7054
Date: 2018-03-01 15:32:13.497942+00:00
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
https://launchpad.net/ubuntu/+source/irssi/1.0.4-1ubuntu2.3
-------------- next part --------------
Sorry, changesfile not available.
More information about the Artful-changes
mailing list