---

CVE-2020-8955 - log back

CVE-2020-8955 edited at 05 Mar 2020 21:44:55
Description	- A heap-based out-of-bounds write has been found in the IRC plugin of weechat before 2.7.1, in irc-mode.c, when receiving a malformed IRC message 324 (channel mode). + A heap-based out-of-bounds write has been found in the IRC plugin of Weechat before 2.7.1, in irc-mode.c, when receiving a malformed IRC message 324 (channel mode).

CVE-2020-8955 edited at 25 Feb 2020 16:21:20
Description	- A heap-based out-of-bounds write has been found in weechat before 2.7.1 when receiving a malformed IRC message 324 (channel mode). + A heap-based out-of-bounds write has been found in the IRC plugin of weechat before 2.7.1, in irc-mode.c, when receiving a malformed IRC message 324 (channel mode).

CVE-2020-8955 edited at 25 Feb 2020 15:37:33
Severity	- Unknown + Critical
Remote	- Unknown + Remote
Type	- Unknown + Arbitrary code execution
Description	- A buffer overflow has been found in weechat before 2.7.1 when receiving a malformed IRC message 324 (channel mode). + A heap-based out-of-bounds write has been found in weechat before 2.7.1 when receiving a malformed IRC message 324 (channel mode).

CVE-2020-8955 edited at 25 Feb 2020 15:33:43
Description	+ A buffer overflow has been found in weechat before 2.7.1 when receiving a malformed IRC message 324 (channel mode).
References	+ https://github.com/weechat/weechat/commit/51a739df615f8ec66fbe1e9682ec3c3218254ad7
Notes

CVE-2020-8955 created at 25 Feb 2020 15:30:37