Lucene search
Gentoo FoundationGLSA-200801-13HistoryJan 27, 2008 - 12:00 a.m.
ngIRCd: Denial of service
2008-01-2700:00:00
Gentoo Foundation
security.gentoo.org
5
0.041 Low
EPSS
Percentile
92.1%
Background
ngIRCd is a free open source daemon for Internet Relay Chat (IRC).
Description
The IRC_PART() function in the file irc-channel.c does not properly check the number of parameters, referencing an invalid pointer if no channel is supplied.
Impact
A remote attacker can exploit this vulnerability to crash the ngIRCd daemon.
Workaround
There is no known workaround at this time.
Resolution
All ngIRCd users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-irc/ngircd-0.10.4"
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Gentoo | any | all | net-irc/ngircd | < 0.10.4 | UNKNOWN |
Related
securityvulns
securityvulns
ngIRCd IRC daemon DoS
2008-01-29 00:00:00
[ GLSA 200801-13 ] ngIRCd: Denial of Service
2008-01-29 00:00:00
redhatcve
redhatcve
CVE-2008-0285
2019-10-04 21:38:01
cve
cve
CVE-2008-0285
2008-01-16 00:00:00
debian
debian
[Backports-security-announce] Security Update for ngircd
2008-12-10 15:11:55
[Backports-security-announce] Security Update for ngircd
2008-12-10 15:12:30
ubuntucve
ubuntucve
CVE-2008-0285
2008-01-16 00:00:00
debiancve
debiancve
CVE-2008-0285
2008-01-16 00:00:00
nessus
nessus
GLSA-200801-13 : ngIRCd: Denial of Service
2008-01-29 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200801-13 (ngircd)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200801-13 (ngircd)
2008-09-24 00:00:00
prion
prion
Design/Logic Flaw
2008-01-16 00:00:00