Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download

issues
advisories
todo
stats
log
login

CVE-2021-40516 - log back

CVE-2021-40516 edited at 09 Sep 2021 12:55:29

Severity

-	Unknown
+	Medium

Remote

-	Unknown
+	Remote

Type

-	Unknown
+	Denial of service

Description

+	WeeChat before 3.2.1 allows remote attackers to cause a denial of service (crash) via a crafted WebSocket frame that trigger an out-of-bounds read in plugins/relay/relay-websocket.c in the Relay plugin.

References

+	https://weechat.org/doc/security/
+	https://github.com/weechat/weechat/commit/8b1331f98de1714bae15a9ca2e2b393ba49d735b

Notes

CVE-2021-40516 created at 09 Sep 2021 12:54:11