14 matches found
openSUSE Security Update : irssi (openSUSE-2016-2524)
The IRC client irssi was updated to 0.8.20, fixing various bugs and security issues. - CVE-2016-7044: The unformat24bitcolor function in the format parsing code in Irssi, when compiled with true-color enabled, allowed remote attackers to cause a denial of service heap corruption and crash via an...
SUSE-SU-2016:2524-1 Security update for irssi
The IRC client irssi was updated to 0.8.20, fixing various bugs and security issues. CVE-2016-7044: The unformat24bitcolor function in the format parsing code in Irssi, when compiled with true-color enabled, allowed remote attackers to cause a denial of service heap corruption and crash via an...
DEBIAN-CVE-2016-7045
The formatsendtogui function in the format parsing code in Irssi before 0.8.20 allows remote attackers to cause a denial of service heap corruption and crash via vectors involving the length of a string...
CVE-2016-7045
The formatsendtogui function in the format parsing code in Irssi before 0.8.20 allows remote attackers to cause a denial of service heap corruption and crash via vectors involving the length of a string...
CVE-2016-7045
The formatsendtogui function in the format parsing code in Irssi before 0.8.20 allows remote attackers to cause a denial of service heap corruption and crash via vectors involving the length of a string...
CVE-2016-7045
CVE-2016-7045 affects the IRC client Irssi prior to version 0.8.20. The vulnerability lies in the format_send_to_gui function of the format parsing code, where input length handling can be exploited by a remote attacker to cause a denial of service via heap corruption and a crash. Affects multipl...
CVE-2016-7045
The formatsendtogui function in the format parsing code in Irssi before 0.8.20 allows remote attackers to cause a denial of service heap corruption and crash via vectors involving the length of a string...
[ASA-201609-20] irssi: arbitrary code execution
Arch Linux Security Advisory ASA-201609-20 ========================================== Severity: High Date : 2016-09-22 CVE-ID : CVE-2016-7045 Package : irssi Type : arbitrary code execution Remote : Yes Link : https://wiki.archlinux.org/index.php/CVE Summary ======= The package irssi before versi...
FreeBSD : irssi -- heap corruption and missing boundary checks (e78261e4-803d-11e6-a590-14dae9d210b8)
Irssi reports : Remote crash and heap corruption. Remote code execution seems difficult since only Nuls are written. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2018...
Ubuntu: Security Advisory (USN-3086-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 16.04 LTS : Irssi vulnerabilities (USN-3086-1)
The remote Ubuntu 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3086-1 advisory. Gabriel Campana and Adrien Guinet discovered that the format parsing code in Irssi did not properly verify 24bit color codes. A remote attacker could use...
[SECURITY] [DSA 3672-1] irssi security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3672-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 21, 2016 https://www.debian.org/security/faq -...
USN-3086-1 irssi vulnerabilities
Gabriel Campana and Adrien Guinet discovered that the format parsing code in Irssi did not properly verify 24bit color codes. A remote attacker could use this to cause a denial of service application crash. CVE-2016-7044 Gabriel Campana and Adrien Guinet discovered that a buffer overflow existed ...
Debian Security Advisory DSA 3672-1 (irssi - security update)
Gabriel Campana and Adrien Guinet from Quarkslab discovered two remotely exploitable crash and heap corruption vulnerabilities in the format parsing code in Irssi, a terminal based IRC client. OpenVAS Vulnerability Test $Id: deb3672.nasl 6608 2017-07-07 12:05:05Z cfischer $ Auto-generated from...