CVE-2020-9759 log

Source
Severity Medium
Remote Yes
Type Denial of service
Description
A heap-based out-of-bounds read has been found in Weechat before 2.7.1, when receiving a malformed IRC message 352 (WHO). It could lead to a off-by-one read resulting in denial of service (crash).
Group Package Affected Fixed Severity Status Ticket
AVG-1103 weechat 2.7-2 2.7.1-1 Critical Fixed
Date Advisory Group Package Severity Description
25 Feb 2020 ASA-202002-12 AVG-1103 weechat Critical multiple issues
References
https://github.com/weechat/weechat/commit/c827d6fa864e2c0b79cea640c45272e83703081e