AVG-342 log
| Package | irssi |
| Status | Fixed |
| Severity | Critical |
| Type | multiple issues |
| Affected | 1.0.3-1 |
| Fixed | 1.0.4-1 |
| Current | 1.4.5-4 [extra] |
| Ticket | None |
| Created | Fri Jul 7 12:34:14 2017 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2017-10966 | Critical | Yes | Arbitrary code execution | While updating the internal nick list, Irssi may incorrectly use the GHashTable interface and free the nick while updating it. This will then result in... |
| CVE-2017-10965 | Medium | Yes | Denial of service | When receiving messages with invalid time stamps, Irssi would try to dereference a NULL pointer. This requires control over the IRC server, or a position of... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 13 Jul 2017 | ASA-201707-13 | irssi | denial of service |
| References |
|---|
https://github.com/irssi/irssi/commit/5e26325317c72a04c1610ad952974e206384d291 |