Linux Distros Unpatched Vulnerability : CVE-2017-9469

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Irssi before 1.0.3, when receiving certain incorrectly quoted DCC files, it tries to find the terminating quote one byte before the allocated memory. Thus,...

Mageia: Security Advisory (MGASA-2017-0185)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for irssi (EulerOS-SA-2019-2595)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for irssi (EulerOS-SA-2019-1971)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DLA-1088-1 : irssi security update

Irssi has some issues where remote attackers might be able to cause a crash. CVE-2017-9468 In irssi, when receiving a DCC message without source nick/host, it attempts to dereference a NULL pointer. CVE-2017-9469 In irssi, when receiving certain incorrectly quoted DCC files, it tries to find the...

Fedora Update for irssi FEDORA-2017-75c571778e

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 25 : irssi (2017-75c571778e)

This is new version with security fixes for CVE-2017-9468, CVE-2017-9469. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...

Debian DSA-3885-1 : irssi - security update

Multiple vulnerabilities have been discovered in Irssi, a terminal based IRC client. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2017-9468 Joseph Bisch discovered that Irssi does not properly handle DCC messages without source nick/host. A malicious...

[SECURITY] [DSA 3885-1] irssi security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3885-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso June 18, 2017 https://www.debian.org/security/faq -...

[SECURITY] [DSA 3885-1] irssi security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3885-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso June 18, 2017 https://www.debian.org/security/faq -...

Debian Security Advisory DSA 3885-1 (irssi - security update)

Multiple vulnerabilities have been discovered in Irssi, a terminal based IRC client. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2017-9468 Joseph Bisch discovered that Irssi does not properly handle DCC messages without source nick/host. A malicious IRC...

Ubuntu: Security Advisory (USN-3317-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-3317-1 irssi vulnerabilities

It was discovered that Irssi incorrectly handled certain DCC messages. A malicious IRC server could use this issue to cause Irssi to crash, resulting in a denial of service. CVE-2017-9468 Joseph Bisch discovered that Irssi incorrectly handled receiving incorrectly quoted DCC files. A remote...

[ASA-201706-11] irssi: denial of service

Arch Linux Security Advisory ASA-201706-11 ========================================== Severity: Medium Date : 2017-06-12 CVE-ID : CVE-2017-9468 CVE-2017-9469 Package : irssi Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-293 Summary ======= The package irssi befor...

openSUSE Security Update : irssi (openSUSE-2017-668)

This update to irssi 1.0.3 fixes the following vulnerabilities : - CVE-2017-9469: irssi: dcc crash with incorrect quoting bsc1043052 - CVE-2017-9468: irssi: dcc message crash without nick/host bsc1043051 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks ...

Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / 14.2 / current : irssi (SSA:2017-158-01)

New irssi packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2017-158-01. The tex...

OPENSUSE-SU-2017:1505-1 Security update for irssi

This update to irssi 1.0.3 fixes the following vulnerabilities: - CVE-2017-9469: irssi: dcc crash with incorrect quoting bsc1043052 - CVE-2017-9468: irssi: dcc message crash without nick/host bsc1043051...

[slackware-security] irssi

New irssi packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/irssi-1.0.3-i586-1slack14.2.txz: Upgraded. Fixed security issues that may result in a denial of service...

CVE-2017-9469

CVE-2017-9469 affects Irssi prior to 1.0.3. By processing certain incorrectly quoted DCC files, Irssi attempts to locate the terminating quote one byte before the allocated memory, which can cause a crash and a denial of service. This is part of a pair of flaws in DCC handling (the other being CV...

CVE-2017-9469

In Irssi before 1.0.3, when receiving certain incorrectly quoted DCC files, it tries to find the terminating quote one byte before the allocated memory. Thus, remote attackers might be able to cause a crash...