Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2017-10966

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Irssi before 1.0.4. While updating the internal nick list, Irssi could incorrectly use the GHashTable interface and free the nick whi...

9.8CVSS8.1AI score0.02935EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.21 views

Mageia: Security Advisory (MGASA-2017-0216)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.03443EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for irssi (EulerOS-SA-2019-2595)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.1AI score0.06084EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.21 views

Huawei EulerOS: Security Advisory for irssi (EulerOS-SA-2019-1971)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8AI score0.06084EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2018/02/06 12:0 a.m.32 views

Debian: Security Advisory (DLA-1089-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.7AI score0.03443EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2017/11/06 12:0 a.m.34 views

Debian DSA-4016-1 : irssi - security update

Multiple vulnerabilities have been discovered in Irssi, a terminal based IRC client. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2017-10965 Brian 'geeknik' Carpenter of Geeknik Labs discovered that Irssi does not properly handle receiving messages wi...

9.8CVSS6.7AI score0.03443EPSS
Exploits0References21
Debian
Debian
added 2017/11/03 7:51 p.m.24 views

[SECURITY] [DSA 4016-1] irssi security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4016-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso November 03, 2017 https://www.debian.org/security/faq -...

7.5CVSS0.6AI score0.03443EPSS
Exploits0
OpenVAS
OpenVAS
added 2017/10/27 12:0 a.m.30 views

Ubuntu: Security Advisory (USN-3465-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7AI score0.03443EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/10/27 12:0 a.m.24 views

Ubuntu 14.04 LTS / 16.04 LTS : Irssi vulnerabilities (USN-3465-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3465-1 advisory. Brian Carpenter discovered that Irssi incorrectly handled messages with invalid time stamps. A malicious IRC server could use this issue to...

9.8CVSS6.9AI score0.03443EPSS
Exploits0References8
Ubuntu
Ubuntu
added 2017/10/26 5:9 p.m.61 views

USN-3465-1: Irssi vulnerabilities

Brian Carpenter discovered that Irssi incorrectly handled messages with invalid time stamps. A malicious IRC server could use this issue to cause Irssi to crash, resulting in a denial of service. CVE-2017-10965 Brian Carpenter discovered that Irssi incorrectly handled the internal nick list. A...

9.8CVSS6.8AI score0.03443EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/09/06 12:0 a.m.36 views

Debian DLA-1089-1 : irssi security update

Some Irssi issues were found : CVE-2017-10965 An issue was discovered in Irssi before 1.0.4. When receiving messages with invalid time stamps, Irssi would try to dereference a NULL pointer. CVE-2017-10966 An issue was discovered in Irssi before 1.0.4. While updating the internal nick list, Irssi...

9.8CVSS8.2AI score0.03443EPSS
Exploits0References4
Debian
Debian
added 2017/09/05 4:12 p.m.50 views

[SECURITY] [DLA 1089-1] irssi security update

Package : irssi Version : 0.8.15-5+deb7u3 CVE ID : CVE-2017-10965 CVE-2017-10966 Debian Bug : 867598 Some Irssi issues were found: CVE-2017-10965 An issue was discovered in Irssi before 1.0.4. When receiving messages with invalid time stamps, Irssi would try to dereference a NULL pointer...

9.8CVSS9.9AI score0.03443EPSS
Exploits0
OpenVAS
OpenVAS
added 2017/08/12 12:0 a.m.28 views

Fedora Update for irssi FEDORA-2017-90ad72e684

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.7AI score0.03443EPSS
Exploits0References2
ArchLinux
ArchLinux
added 2017/07/13 12:0 a.m.41 views

[ASA-201707-13] irssi: denial of service

Arch Linux Security Advisory ASA-201707-13 ========================================== Severity: Critical Date : 2017-07-13 CVE-ID : CVE-2017-10965 CVE-2017-10966 Package : irssi Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-342 Summary ======= The package irssi...

9.8CVSS1.9AI score0.03443EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2017/07/10 12:0 a.m.27 views

openSUSE Security Update : irssi (openSUSE-2017-797)

This update for irssi to version fixes the following issues : - CVE-2017-10965: A malicious server could cause irssi to crash by providing an invalid timestamp - CVE-2017-10966: Undefined behavior may be triggered when irssi updates the internal nick list A number of minor upstream bug fixes are...

9.8CVSS8.1AI score0.03443EPSS
Exploits0References3
OSV
OSV
added 2017/07/07 11:3 p.m.7 views

OPENSUSE-SU-2017:1824-1 Security update for irssi

This update for irssi to version fixes the following issues: - CVE-2017-10965: A malicious server could cause irssi to crash by providing an invalid timestamp - CVE-2017-10966: Undefined behavior may be triggered when irssi updates the internal nick list A number of minor upstream bug fixes are...

9.8CVSS9.4AI score0.03443EPSS
Exploits0References3
OSV
OSV
added 2017/07/07 11:3 p.m.9 views

OPENSUSE-SU-2017:1823-1 Security update for irssi

This update for irssi to version fixes the following issues: - CVE-2017-10965: A malicious server could cause irssi to crash by providing an invalid timestamp - CVE-2017-10966: Undefined behavior may be triggered when irssi updates the internal nick list A number of minor upstream bug fixes are...

9.8CVSS9.4AI score0.03443EPSS
Exploits0References3
Hacker One
Hacker One
added 2017/07/07 6:45 p.m.37 views

Internet Bug Bounty: CVE-2017-10966: Heap-use-after-free in Irssi <1.0.4

35 days after reading https://irssi.org/2017/05/12/fuzzing-irssi/, I was able to trigger a heap-use-after-free in irssi 1.0.2. Timeline: Report to vendor: 16 June 2017 Acknowledge by vendor: 16 June 2017 Fixed by vendor: 7 July 2017 Advisory: http://seclists.org/oss-sec/2017/q3/80 Patch:...

7.5CVSS8.7AI score0.02935EPSS
Exploits0
Cvelist
Cvelist
added 2017/07/07 2:0 p.m.28 views

CVE-2017-10966

An issue was discovered in Irssi before 1.0.4. While updating the internal nick list, Irssi could incorrectly use the GHashTable interface and free the nick while updating it. This would then result in use-after-free conditions on each access of the hash table...

9.4AI score0.02935EPSS
Exploits0References3
CVE
CVE
added 2017/07/07 2:0 p.m.115 views

CVE-2017-10966

CVE-2017-10966 affects Irssi prior to 1.0.4. While updating the internal nick list, Irssi could improperly use the GHashTable interface and free the nick during updates, causing use-after-free on subsequent hash-table accesses. This was fixed upstream in version 1.0.4; Debian and Arch/Linux advis...

9.8CVSS9.2AI score0.02935EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder