SUSE CVE-2016-10189

BitlBee before 3.5 allows remote attackers to cause a denial of service NULL pointer dereference and crash and possibly execute arbitrary code via a file transfer request for a contact that is not in the contact list...

Debian: Security Advisory (DLA-832-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Updated bitlbee packages fix security vulnerability

It was discovered that bitlbee contained issues that allowed a remote attacker to cause a denial of service via application crash, or potentially execute arbitrary commands CVE-2016-10188, CVE-2016-10189...

Debian DSA-3853-1 : bitlbee - security update

It was discovered that bitlbee, an IRC to other chat networks gateway, contained issues that allowed a remote attacker to cause a denial of service via application crash, or potentially execute arbitrary commands. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and packa...

[SECURITY] [DSA 3853-1] bitlbee security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3853-1 [email protected] https://www.debian.org/security/ Sebastien Delafond May 15, 2017 https://www.debian.org/security/faq -...

[SECURITY] [DSA 3853-1] bitlbee security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3853-1 [email protected] https://www.debian.org/security/ Sebastien Delafond May 15, 2017 https://www.debian.org/security/faq -...

Debian Security Advisory DSA 3853-1 (bitlbee - security update)

It was discovered that bitlbee, an IRC to other chat networks gateway, contained issues that allowed a remote attacker to cause a denial of service via application crash, or potentially execute arbitrary commands. OpenVAS Vulnerability Test $Id: deb3853.nasl 6607 2017-07-07 12:04:25Z cfischer $...

CVE-2016-10189

CVE-2016-10189 affects BitlBee; prior to version 3.5, a remote attacker can trigger a NULL pointer dereference via a file transfer request for a contact not in the list, leading to a crash and possible arbitrary code execution. Public advisories (Debian DSA-3853/DSA-3853-1, Mageia MGASA-2017-0200...

CVE-2017-5668

bitlbee-libpurple before 3.5.1 allows remote attackers to cause a denial of service NULL pointer dereference and crash and possibly execute arbitrary code via a file transfer request for a contact that is not in the contact list. NOTE: this vulnerability exists because of an incomplete fix for...

openSUSE Security Update : bitlbee (openSUSE-2017-328)

This update for bitlbee fixes the following security issues : - A file transfer request from a contact not in the contact list could have resulted in a NULL pointer dereference, causing remote DoS by malicious remote clients CVE-2016-10189, bnc1022498. %NASLMINLEVEL 70300 C Tenable Network...

Debian DLA-832-1 : bitlbee security update

CVE-2017-5668 Fix for incomplete fix for 'NULL pointer dereference with file transfer request from unknown contacts'. Though this package wasn't in Wheezy with this issue, I mention it here. The fix was done with the second patch for CVE-2016-10189 CVE-2016-10189 NULL pointer dereference with fil...

[SECURITY] [DLA 832-1] bitlbee security update

Package : bitlbee Version : 3.0.5-1.2+deb7u1 CVE ID : CVE-2016-10188 CVE-2016-10189 CVE-2017-5668 CVE-2017-5668 Fix for incomplete fix for "Null pointer dereference with file transfer request from unknown contacts". Though this package wasnt in Wheezy with this issue, I mention it here. The fix w...