[ubuntu/xenial-security] irssi 0.8.19-1ubuntu1.7 (Accepted)
Leonidas S. Barbosa
leo.barbosa at canonical.com
Tue Mar 6 13:41:16 UTC 2018
irssi (0.8.19-1ubuntu1.7) xenial-security; urgency=medium
* SECURITY UPDATE: Null pointer dereference
- debian/patches/CVE-2018-7050.patch: check if
nick is Null in src/fe-common/core/chat-completion.c.
- CVE-2018-7050
* SECURITY UPDATE: Certain nick names result in out-of-bounds
access
- debian/patches/CVE-2018-7051.patch: don't read beyond end of
escaped string in src/fe-common/core/themes.c.
- CVE-2018-7051
* SECURITY UPDATE: Null pointer dereference
- debian/patches/CVE-2018-7052.patch: check if window parent
is Null in src/fe-text/mainwindows.c.
- CVE-2018-7052
* SECURITY UPDATE: use-after-free
- debian/patches/CVE-2018-7053.patch: avoiding
reuse sasl timeout in src/irc/core/sasl.c.
- CVE-2018-7073
Date: 2018-02-28 21:31:11.903557+00:00
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
https://launchpad.net/ubuntu/+source/irssi/0.8.19-1ubuntu1.7
-------------- next part --------------
Sorry, changesfile not available.
More information about the Xenial-changes
mailing list