12 matches found
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM : WeeChat vulnerabilities (USN-5258-1)
The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5258-1 advisory. Stuart Nevans Locke discovered that WeeChat's relay plugin insecurely handled malformed websocket frames. A remote attacker in...
SUSE CVE-2021-40516
WeeChat before 3.2.1 allows remote attackers to cause a denial of service crash via a crafted WebSocket frame that trigger an out-of-bounds read in plugins/relay/relay-websocket.c in the Relay plugin...
Ubuntu: Security Advisory (USN-5258-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE 15 Security Update : weechat (openSUSE-SU-2022:0083-1)
The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2022:0083-1 advisory. - WeeChat before 3.2.1 allows remote attackers to cause a denial of service crash via a crafted WebSocket frame that trigger an out-of-bounds read i...
OPENSUSE-SU-2022:0083-1 Security update for weechat
This update for weechat fixes the following issues: update to 3.2.1: CVE-2021-40516: relay: fix crash when decoding a malformed websocket frame boo1190206 update to 3.2 main changes: use XDG directories by default config, data, cache, runtime add support of IRC SASL mechanisms SCRAM-SHA-1,...
Security update for weechat (moderate)
openSUSE Security Update: Security update for weechat Announcement ID: openSUSE-SU-2022:0083-1 Rating: moderate References: 1190206 Cross-References: CVE-2021-40516 Affected Products: openSUSE Backports SLE-15-SP3 An update that fixes one vulnerability is now available. Description: This update f...
USN-5258-1: WeeChat vulnerabilities
Stuart Nevans Locke discovered that WeeChat's relay plugin insecurely handled malformed websocket frames. A remote attacker in control of a server could possibly use this issue to cause denial of service in a client. CVE-2021-40516 Stuart Nevans Locke discovered that WeeChat insecurely handled...
Debian: Security Advisory (DLA-2770-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 2770-1] weechat security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2770-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk September 30, 2021 https://wiki.debian.org/LTS -...
CVE-2021-40516
creationtimestamp| type| source ---|---|--- 2021-09-05 22:39:47+00:00| seen| https://t.me/cibsecurity/28269...
CVE-2021-40516
WeeChat before 3.2.1 allows remote attackers to cause a denial of service crash via a crafted WebSocket frame that trigger an out-of-bounds read in plugins/relay/relay-websocket.c in the Relay plugin...
CVE-2021-40516
CVE-2021-40516 affects WeeChat before 3.2.1. The vulnerability is in the Relay plugin’s WebSocket handling, specifically an out-of-bounds read in plugins/relay/relay-websocket.c, which an attacker can trigger remotely to cause a denial of service (crash). Connected sources confirm affected versio...