[ubuntu/xenial-security] weechat 1.4-2ubuntu0.1 (Accepted)
Seth Arnold
seth.arnold at canonical.com
Fri Apr 28 02:36:15 UTC 2017
weechat (1.4-2ubuntu0.1) xenial-security; urgency=medium
* SECURITY UPDATE: remote buffer overflow crash by sending a filename
via DCC to the IRC plugin (LP: #1686478)
- debian/patches/03_fix_CVE-2017-8073.patch: Fix quote removal in
irc_ctcp_dcc_filename_without_quotes function in
src/plugins/irc/irc-ctcp.c. Patch from 1.7.1 via Debian.
- CVE-2017-8073
Date: 2017-04-27 02:20:53.364188+00:00
Changed-By: Jeremy Bicha <jeremy at bicha.net>
Signed-By: Seth Arnold <seth.arnold at canonical.com>
https://launchpad.net/ubuntu/+source/weechat/1.4-2ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Xenial-changes
mailing list