[ubuntu/xenial-security] weechat 1.4-2ubuntu0.1 (Accepted)

Seth Arnold seth.arnold at canonical.com
Fri Apr 28 02:36:15 UTC 2017

weechat (1.4-2ubuntu0.1) xenial-security; urgency=medium

  * SECURITY UPDATE: remote buffer overflow crash by sending a filename
    via DCC to the IRC plugin (LP: #1686478)
    - debian/patches/03_fix_CVE-2017-8073.patch: Fix quote removal in
      irc_ctcp_dcc_filename_without_quotes function in
      src/plugins/irc/irc-ctcp.c. Patch from 1.7.1 via Debian.
    - CVE-2017-8073

Date: 2017-04-27 02:20:53.364188+00:00
Changed-By: Jeremy Bicha <jeremy at bicha.net>
Signed-By: Seth Arnold <seth.arnold at canonical.com>
-------------- next part --------------
Sorry, changesfile not available.

More information about the Xenial-changes mailing list