111 matches found
CVE-2016-10188
Use-after-free vulnerability in bitlbee-libpurple before 3.5 allows remote servers to cause a denial of service crash or possibly execute arbitrary code by causing a file transfer connection to expire...
DEBIAN-CVE-2016-10188
Use-after-free vulnerability in bitlbee-libpurple before 3.5 allows remote servers to cause a denial of service crash or possibly execute arbitrary code by causing a file transfer connection to expire...
DEBIAN-CVE-2016-10189
BitlBee before 3.5 allows remote attackers to cause a denial of service NULL pointer dereference and crash and possibly execute arbitrary code via a file transfer request for a contact that is not in the contact list...
UBUNTU-CVE-2016-10188
Use-after-free vulnerability in bitlbee-libpurple before 3.5 allows remote servers to cause a denial of service crash or possibly execute arbitrary code by causing a file transfer connection to expire...
UBUNTU-CVE-2017-5668
bitlbee-libpurple before 3.5.1 allows remote attackers to cause a denial of service NULL pointer dereference and crash and possibly execute arbitrary code via a file transfer request for a contact that is not in the contact list. NOTE: this vulnerability exists because of an incomplete fix for...
CVE-2016-10189
BitlBee before 3.5 allows remote attackers to cause a denial of service NULL pointer dereference and crash and possibly execute arbitrary code via a file transfer request for a contact that is not in the contact list...
CVE-2017-5668
CVE-2017-5668 affects bitlbee-libpurple before 3.5.1. A remote attacker can trigger a denial of service (NULL pointer dereference/crash) and possibly execute arbitrary code via a file transfer request for a contact not in the list, due to an incomplete fix for CVE-2016-10189. Public advisories/de...
CVE-2016-10188
The CVE CVE-2016-10188 affects bitlbee-libpurple prior to 3.5. A use-after-free vulnerability allows a remote attacker to cause a denial of service (crash) or potentially execute arbitrary code by causing a file transfer connection to expire. Public advisories and vulnerability records confirm th...
CVE-2016-10189
CVE-2016-10189 affects BitlBee; prior to version 3.5, a remote attacker can trigger a NULL pointer dereference via a file transfer request for a contact not in the list, leading to a crash and possible arbitrary code execution. Public advisories (Debian DSA-3853/DSA-3853-1, Mageia MGASA-2017-0200...
CVE-2016-10188
Use-after-free vulnerability in bitlbee-libpurple before 3.5 allows remote servers to cause a denial of service crash or possibly execute arbitrary code by causing a file transfer connection to expire...
CVE-2016-10189
BitlBee before 3.5 allows remote attackers to cause a denial of service NULL pointer dereference and crash and possibly execute arbitrary code via a file transfer request for a contact that is not in the contact list...
CVE-2017-5668
bitlbee-libpurple before 3.5.1 allows remote attackers to cause a denial of service NULL pointer dereference and crash and possibly execute arbitrary code via a file transfer request for a contact that is not in the contact list. NOTE: this vulnerability exists because of an incomplete fix for...
CVE-2016-10188
Use-after-free vulnerability in bitlbee-libpurple before 3.5 allows remote servers to cause a denial of service crash or possibly execute arbitrary code by causing a file transfer connection to expire...
CVE-2017-5668
bitlbee-libpurple before 3.5.1 allows remote attackers to cause a denial of service NULL pointer dereference and crash and possibly execute arbitrary code via a file transfer request for a contact that is not in the contact list. NOTE: this vulnerability exists because of an incomplete fix for...
CVE-2016-10189
BitlBee before 3.5 allows remote attackers to cause a denial of service NULL pointer dereference and crash and possibly execute arbitrary code via a file transfer request for a contact that is not in the contact list...
openSUSE Security Update : bitlbee (openSUSE-2017-328)
This update for bitlbee fixes the following security issues : - A file transfer request from a contact not in the contact list could have resulted in a NULL pointer dereference, causing remote DoS by malicious remote clients CVE-2016-10189, bnc1022498. %NASLMINLEVEL 70300 C Tenable Network...
Debian DLA-832-1 : bitlbee security update
CVE-2017-5668 Fix for incomplete fix for 'NULL pointer dereference with file transfer request from unknown contacts'. Though this package wasn't in Wheezy with this issue, I mention it here. The fix was done with the second patch for CVE-2016-10189 CVE-2016-10189 NULL pointer dereference with fil...
[SECURITY] [DLA 832-1] bitlbee security update
Package : bitlbee Version : 3.0.5-1.2+deb7u1 CVE ID : CVE-2016-10188 CVE-2016-10189 CVE-2017-5668 CVE-2017-5668 Fix for incomplete fix for "Null pointer dereference with file transfer request from unknown contacts". Though this package wasnt in Wheezy with this issue, I mention it here. The fix w...
Fedora Update for bitlbee FEDORA-2017-deb82f0c0d
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for bitlbee FEDORA-2017-6694f5cd3a
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...