9 matches found
CVE-2016-4414
CVE-2016-4414 affects Quassel before 0.12.4, where the onReadyRead function in core/coreauthhandler.cpp is vulnerable. An attacker can trigger a denial of service (NULL pointer dereference and crash) by sending invalid handshake data. Public references in NVD and related advisories confirm the vu...
openSUSE Security Update : quassel (openSUSE-2016-589)
This update for quassel fixes the following issues : - CVE-2016-4414: Denial of service vulnerability by unauthenticated clients boo978002 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
Fedora 23 : quassel-0.12.4-1.fc23 (2016-42f30d76a0)
Security fix for CVE-2016-4414, Update to latest upstream quassel release, 0.12.4 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...
Fedora 22 : quassel-0.12.4-1.fc22 (2016-0431acaa78)
Security fix for CVE-2016-4414, Update to latest upstream quassel release, 0.12.4 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...
Fedora 24 : quassel-0.12.4-1.fc24 (2016-bf916bcc04)
Security fix for CVE-2016-4414, Update to latest upstream quassel release, 0.12.4 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...
Mageia: Security Advisory (MGASA-2016-0166)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2016-0166 Updated quassel packages fix CVE-2016-4414
Updated quassel packages fix security vulnerability: It was found that quasselcore is vulnerable to a denial of service attack by unauthenticated clients. The protocol negotiation did not take into account lack of a match in handshake data, in which case PeerFactory::createPeer returns a nullptr,...
Updated quassel packages fix CVE-2016-4414
Updated quassel packages fix security vulnerability: It was found that quasselcore is vulnerable to a denial of service attack by unauthenticated clients. The protocol negotiation did not take into account lack of a match in handshake data, in which case PeerFactory::createPeer returns a nullptr,...
quassel-core: denial of service
CVE-2016-4414 denial of service It was found that quasselcore is vulnerable to a denial of service attack by unauthenticated clients. The protocol negotiation did not take into account lack of a match, in which case PeerFactory::createPeer returns a nullptr, which is immediately dereferenced...