AVG-27

Package irssi
Status Fixed
Severity High
Type arbitrary code execution
Affected 0.8.19-2
Fixed 0.8.20-1
Current 1.1.1-1 [extra]
Ticket None
Created Thu Sep 22 07:46:13 2016
Issue Severity Remote Type Description
CVE-2016-7045 High Yes Arbitrary code execution
The format_send_to_gui() function does not validate the length of the string before incrementing the `ptr' pointer in all cases.
If that happens, the...
Date Advisory Package Description
22 Sep 2016 ASA-201609-20 irssi arbitrary code execution
References
https://irssi.org/security/irssi_sa_2016.txt