CVE-2012-5854

🗓️ 19 Nov 2012 11:00:00Reported by mitreType

Heap-based buffer overflow in WeeChat 0.3.6 through 0.3.9 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IRC colors

Reporter	Title	Published	Views	Family All 37
Cvelist	CVE-2012-5854	19 Nov 201211:00	–	cvelist
Debian CVE	CVE-2012-5854	19 Nov 201211:00	–	debiancve
FreeBSD	weechat -- Crash or freeze when decoding IRC colors in strings	9 Nov 201200:00	–	freebsd
EUVD	EUVD-2012-5732	7 Oct 202500:30	–	euvd
Fedora	[SECURITY] Fedora 17 Update: weechat-0.3.9.2-2.fc17	11 Dec 201201:26	–	fedora
Fedora	[SECURITY] Fedora 16 Update: weechat-0.3.9.2-2.fc16	11 Dec 201209:18	–	fedora
Fedora	[SECURITY] Fedora 16 Update: weechat-0.3.8-3.fc16	19 Nov 201202:18	–	fedora
Fedora	[SECURITY] Fedora 18 Update: weechat-0.3.8-3.fc18	14 Nov 201202:11	–	fedora
Fedora	[SECURITY] Fedora 17 Update: weechat-0.3.8-3.fc17	19 Nov 201202:32	–	fedora
Fedora	[SECURITY] Fedora 18 Update: weechat-0.3.9.2-2.fc18	12 Dec 201200:13	–	fedora

NVD

Node

flashtux weechatMatch0.3.6

flashtux weechatMatch0.3.7

flashtux weechatMatch0.3.8

flashtux weechatMatch0.3.9

Source	Link
mandriva	www.mandriva.com/security/advisories
osvdb	www.osvdb.org/87279
lists	www.lists.opensuse.org/opensuse-security-announce/2013-01/msg00018.html
openwall	www.openwall.com/lists/oss-security/2012/11/12/2
lists	www.lists.fedoraproject.org/pipermail/package-announce/2012-November/092490.html
lists	www.lists.fedoraproject.org/pipermail/package-announce/2012-November/092228.html
wiki	www.wiki.mageia.org/en/Support/Advisories/MGASA-2012-0330
savannah	www.savannah.nongnu.org/bugs/
lists	www.lists.opensuse.org/opensuse-updates/2012-11/msg00087.html
secunia	www.secunia.com/advisories/51377

29 Apr 2026 01:13Current

8High risk

Vulners AI Score8

CVSS 27.5

EPSS0.0661

CWE-119