Lucene search
K

16 matches found

Tenable Nessus
Tenable Nessus
added 2023/10/16 12:0 a.m.31 views

Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM : WeeChat vulnerabilities (USN-5258-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5258-1 advisory. Stuart Nevans Locke discovered that WeeChat's relay plugin insecurely handled malformed websocket frames. A remote attacker in...

9.8CVSS7.5AI score0.03684EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2023/01/27 12:0 a.m.23 views

Ubuntu: Security Advisory (USN-5258-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.03684EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2022/02/04 4:38 p.m.37 views

USN-5258-1: WeeChat vulnerabilities

Stuart Nevans Locke discovered that WeeChat's relay plugin insecurely handled malformed websocket frames. A remote attacker in control of a server could possibly use this issue to cause denial of service in a client. CVE-2021-40516 Stuart Nevans Locke discovered that WeeChat insecurely handled...

9.8CVSS7.4AI score0.03684EPSS
Exploits1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.15 views

Mageia: Security Advisory (MGASA-2017-0369)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.02836EPSS
Exploits0References6
Mageia
Mageia
added 2017/10/13 7:33 p.m.32 views

Updated weechat packages fix security vulnerability

It was discovered that logger.c in the logger plugin in WeeChat before 1.9.1 allows a crash via strftime date/time specifiers, because a buffer is not initialized CVE-2017-14727...

7.5CVSS4.6AI score0.02836EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2017/10/02 12:0 a.m.27 views

openSUSE Security Update : weechat (openSUSE-2017-1111)

This update for weechat fixes the following issues : - CVE-2017-14727: A uninitialized buffer could be used to crash the logger plugin in WeeChat boo1060140 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...

7.5CVSS7.4AI score0.02836EPSS
Exploits0References2
Debian
Debian
added 2017/09/26 5:25 p.m.16 views

[SECURITY] [DLA 1111-1] weechat security update

Package : weechat Version : 0.3.8-1+deb7u3 CVE ID : CVE-2017-14727 Debian Bug : 876553 It was discovered that WeeChats logger plugin is vulnerable to an invalid buffer read which can be exploited remotely to trigger an application crash or other undefined behaviour. For Debian 7 "Wheezy", these...

7.5CVSS8AI score0.02836EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/09/26 12:0 a.m.23 views

FreeBSD : weechat -- crash in logger plugin (b63421b6-a1e0-11e7-ac58-b499baebfeaf)

WeeChat reports : security problem: a crash can happen in logger plugin when converting date/time specifiers in file mask. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-20...

7.5CVSS7.2AI score0.02836EPSS
Exploits0References3
ArchLinux
ArchLinux
added 2017/09/25 12:0 a.m.24 views

[ASA-201709-20] weechat: denial of service

Arch Linux Security Advisory ASA-201709-20 ========================================== Severity: Medium Date : 2017-09-25 CVE-ID : CVE-2017-14727 Package : weechat Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-412 Summary ======= The package weechat before version...

7.5CVSS1.6AI score0.02836EPSS
Exploits0References4
OSV
OSV
added 2017/09/23 8:29 p.m.2 views

UBUNTU-CVE-2017-14727

logger.c in the logger plugin in WeeChat before 1.9.1 allows a crash via strftime date/time specifiers, because a buffer is not initialized...

7.5CVSS7.3AI score0.02836EPSS
Exploits0References6
NVD
NVD
added 2017/09/23 8:29 p.m.19 views

CVE-2017-14727

logger.c in the logger plugin in WeeChat before 1.9.1 allows a crash via strftime date/time specifiers, because a buffer is not initialized...

7.5CVSS7.7AI score0.02836EPSS
Exploits0References4
OSV
OSV
added 2017/09/23 8:29 p.m.1 views

DEBIAN-CVE-2017-14727

logger.c in the logger plugin in WeeChat before 1.9.1 allows a crash via strftime date/time specifiers, because a buffer is not initialized...

7.5CVSS7.1AI score0.02836EPSS
Exploits0References1
Cvelist
Cvelist
added 2017/09/23 8:0 p.m.20 views

CVE-2017-14727

logger.c in the logger plugin in WeeChat before 1.9.1 allows a crash via strftime date/time specifiers, because a buffer is not initialized...

7.6AI score0.02836EPSS
Exploits0References4
CVE
CVE
added 2017/09/23 8:0 p.m.100 views

CVE-2017-14727

Summary: CVE-2017-14727 affects WeeChat’s logger plugin prior to 1.9.1. The vulnerability arises in logger.c where, when handling date/time specifiers, a buffer is not initialized, allowing a remote crash via crafted strftime usage. Impact: Remote crash of the WeeChat client (logger plugin) due t...

7.5CVSS7.5AI score0.02836EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2017/09/23 8:0 p.m.20 views

CVE-2017-14727

logger.c in the logger plugin in WeeChat before 1.9.1 allows a crash via strftime date/time specifiers, because a buffer is not initialized...

7.5CVSS7.6AI score0.02836EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2017/09/23 8:0 p.m.37 views

CVE-2017-14727

logger.c in the logger plugin in WeeChat before 1.9.1 allows a crash via strftime date/time specifiers, because a buffer is not initialized...

7.5CVSS7.7AI score0.02836EPSS
Exploits0
Rows per page
Query Builder