7 matches found
USN-4594-1 quassel vulnerabilities
It was discovered that Quassel incorrectly handled Qdatastream protocol. A remote attacker could possibly use this issue to execute arbitrary code. CVE-2018-1000178 It was discovered that Quassel incorrectly handled certain login requests. A remote attacker could possibly use this issue to cause ...
Ubuntu 18.04 LTS : Quassel vulnerabilities (USN-4594-1)
The remote Ubuntu 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4594-1 advisory. It was discovered that Quassel incorrectly handled Qdatastream protocol. A remote attacker could possibly use this issue to execute arbitrary code...
GLSA-201806-04 : Quassel: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201806-04 Quassel: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Quassel. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could cause arbitrary code execution ...
Updated quassel packages fix security vulnerabilities
A heap corruption exists in quassel version 0.12.4 in quasselcore that allows an attacker to execute code remotely CVE-2018-1000178. A NULL Pointer Dereference exists in quassel version 0.12.4 in the quasselcore that allows an atacker to denial of service by attempting a login when the database i...
UBUNTU-CVE-2018-1000178
A heap corruption of type CWE-120 exists in quassel version 0.12.4 in quasselcore in void DataStreamPeer::processMessageconst QByteArray &msg datastreampeer.cpp line 62 that allows an attacker to execute code remotely...
CVE-2018-1000178
A heap corruption of type CWE-120 exists in quassel version 0.12.4 in quasselcore in void DataStreamPeer::processMessageconst QByteArray &msg datastreampeer.cpp line 62 that allows an attacker to execute code remotely...
CVE-2018-1000178
Quassel Core vulnerability CVE-2018-1000178 involves a heap corruption (CWE-120) in DataStreamPeer::processMessage inside quasselcore on version 0.12.4, enabling remote code execution by an attacker. Public advisories (Mageia GLSA-201806-04) note that Quassel users should upgrade to 0.12.5 to add...