AVG-342

Package irssi
Status Fixed
Severity Critical
Type multiple issues
Affected 1.0.3-1
Fixed 1.0.4-1
Current 1.1.1-1 [extra]
Ticket None
Created Fri Jul 7 12:34:14 2017
Issue Severity Remote Type Description
CVE-2017-10966 Critical Yes Arbitrary code execution
While updating the internal nick list, Irssi may incorrectly use the GHashTable interface and free the nick while updating it. This will then result in...
CVE-2017-10965 Medium Yes Denial of service
When receiving messages with invalid time stamps, Irssi would try to dereference a NULL pointer. This requires control over the IRC server, or a position of...
Date Advisory Package Description
13 Jul 2017 ASA-201707-13 irssi denial of service
References
https://github.com/irssi/irssi/commit/5e26325317c72a04c1610ad952974e206384d291