[SECURITY] [DLA 1318-1] irssi security update

2018-03-26T15:53:14
ID DEBIAN:DLA-1318-1:41484
Type debian
Reporter Debian
Modified 2018-03-26T15:53:14

Description

Package : irssi Version : 0.8.15-5+deb7u6 CVE ID : CVE-2018-7051 Debian Bug : #890677

It was discovered that there was an issue in the irssi IRC client where certain nick names could result in out-of-bounds access when printing theme strings.

For Debian 7 "Wheezy", this issue has been fixed in irssi version 0.8.15-5+deb7u6. It was incorrectly missing from the upload of 0.8.15-5+deb7u5 announced as part of DLA-1289-1. Thanks to Ben Hutchings and Matus Uhlhar.

We recommend that you upgrade your irssi packages.

Regards,


  ,''`.
 : :'  :     Chris Lamb
 `. `'`      lamby@debian.org / chris-lamb.co.uk
   `-