Lucene search
K

21 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2017-10965

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Irssi before 1.0.4. When receiving messages with invalid time stamps, Irssi would try to dereference a NULL pointer. CVE-2017-10965...

9.8CVSS8.1AI score0.03443EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.21 views

Mageia: Security Advisory (MGASA-2017-0216)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.03443EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.21 views

Huawei EulerOS: Security Advisory for irssi (EulerOS-SA-2019-1971)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8AI score0.06084EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for irssi (EulerOS-SA-2019-2595)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.1AI score0.06084EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2018/02/06 12:0 a.m.31 views

Debian: Security Advisory (DLA-1089-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.7AI score0.03443EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2017/11/06 12:0 a.m.33 views

Debian DSA-4016-1 : irssi - security update

Multiple vulnerabilities have been discovered in Irssi, a terminal based IRC client. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2017-10965 Brian 'geeknik' Carpenter of Geeknik Labs discovered that Irssi does not properly handle receiving messages wi...

9.8CVSS6.7AI score0.03443EPSS
Exploits0References21
Debian
Debian
added 2017/11/03 7:51 p.m.24 views

[SECURITY] [DSA 4016-1] irssi security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4016-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 03, 2017 https://www.debian.org/security/faq -...

7.5CVSS0.6AI score0.03443EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/10/27 12:0 a.m.24 views

Ubuntu 14.04 LTS / 16.04 LTS : Irssi vulnerabilities (USN-3465-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3465-1 advisory. Brian Carpenter discovered that Irssi incorrectly handled messages with invalid time stamps. A malicious IRC server could use this issue to...

9.8CVSS6.9AI score0.03443EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2017/10/27 12:0 a.m.30 views

Ubuntu: Security Advisory (USN-3465-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7AI score0.03443EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2017/10/26 5:9 p.m.61 views

USN-3465-1: Irssi vulnerabilities

Brian Carpenter discovered that Irssi incorrectly handled messages with invalid time stamps. A malicious IRC server could use this issue to cause Irssi to crash, resulting in a denial of service. CVE-2017-10965 Brian Carpenter discovered that Irssi incorrectly handled the internal nick list. A...

9.8CVSS6.8AI score0.03443EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/09/06 12:0 a.m.36 views

Debian DLA-1089-1 : irssi security update

Some Irssi issues were found : CVE-2017-10965 An issue was discovered in Irssi before 1.0.4. When receiving messages with invalid time stamps, Irssi would try to dereference a NULL pointer. CVE-2017-10966 An issue was discovered in Irssi before 1.0.4. While updating the internal nick list, Irssi...

9.8CVSS8.2AI score0.03443EPSS
Exploits0References4
Debian
Debian
added 2017/09/05 4:12 p.m.31 views

[SECURITY] [DLA 1089-1] irssi security update

Package : irssi Version : 0.8.15-5+deb7u3 CVE ID : CVE-2017-10965 CVE-2017-10966 Debian Bug : 867598 Some Irssi issues were found: CVE-2017-10965 An issue was discovered in Irssi before 1.0.4. When receiving messages with invalid time stamps, Irssi would try to dereference a NULL pointer...

9.8CVSS9.9AI score0.03443EPSS
Exploits0
OpenVAS
OpenVAS
added 2017/08/12 12:0 a.m.28 views

Fedora Update for irssi FEDORA-2017-90ad72e684

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.7AI score0.03443EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2017/07/20 9:48 a.m.25 views

CVE-2017-10965

An issue was discovered in Irssi before 1.0.4. When receiving messages with invalid time stamps, Irssi would try to dereference a NULL pointer...

9.8CVSS2.9AI score0.03443EPSS
Exploits0References2
ArchLinux
ArchLinux
added 2017/07/13 12:0 a.m.41 views

[ASA-201707-13] irssi: denial of service

Arch Linux Security Advisory ASA-201707-13 ========================================== Severity: Critical Date : 2017-07-13 CVE-ID : CVE-2017-10965 CVE-2017-10966 Package : irssi Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-342 Summary ======= The package irssi...

9.8CVSS1.9AI score0.03443EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2017/07/10 12:0 a.m.27 views

openSUSE Security Update : irssi (openSUSE-2017-797)

This update for irssi to version fixes the following issues : - CVE-2017-10965: A malicious server could cause irssi to crash by providing an invalid timestamp - CVE-2017-10966: Undefined behavior may be triggered when irssi updates the internal nick list A number of minor upstream bug fixes are...

9.8CVSS8.1AI score0.03443EPSS
Exploits0References3
OSV
OSV
added 2017/07/07 11:3 p.m.9 views

OPENSUSE-SU-2017:1823-1 Security update for irssi

This update for irssi to version fixes the following issues: - CVE-2017-10965: A malicious server could cause irssi to crash by providing an invalid timestamp - CVE-2017-10966: Undefined behavior may be triggered when irssi updates the internal nick list A number of minor upstream bug fixes are...

9.8CVSS9.4AI score0.03443EPSS
Exploits0References3
OSV
OSV
added 2017/07/07 11:3 p.m.7 views

OPENSUSE-SU-2017:1824-1 Security update for irssi

This update for irssi to version fixes the following issues: - CVE-2017-10965: A malicious server could cause irssi to crash by providing an invalid timestamp - CVE-2017-10966: Undefined behavior may be triggered when irssi updates the internal nick list A number of minor upstream bug fixes are...

9.8CVSS9.4AI score0.03443EPSS
Exploits0References3
Hacker One
Hacker One
added 2017/07/07 6:43 p.m.40 views

Internet Bug Bounty: CVE-2017-10965: Null pointer dereference in Irssi <1.0.4

34 days after reading https://irssi.org/2017/05/12/fuzzing-irssi/, I was finally able to trigger a null pointer dereference in irssi 1.0.2. Timeline: Report to vendor: 15 June 2017 Acknowledge by vendor: 15 June 2017 Fixed by vendor: 7 July 2017 Advisory: http://seclists.org/oss-sec/2017/q3/80...

7.5CVSS8.7AI score0.03443EPSS
Exploits0
CVE
CVE
added 2017/07/07 2:0 p.m.123 views

CVE-2017-10965

CVE-2017-10965 affects Irssi prior to 1.0.4. The flaw occurs when receiving messages with invalid timestamps, causing a NULL pointer dereference and denial of service. Advisories from Debian/Arch/Fedora confirm patching to 1.0.4 or newer; upgrade recommended.

9.8CVSS9.1AI score0.03443EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder