27 matches found
EUVD-2022-5424
Malicious code in bioql PyPI...
SUSE CVE-2017-8073
WeeChat before 1.7.1 allows a remote crash by sending a filename via DCC to the IRC plugin. This occurs in the ircctcpdccfilenamewithoutquotes function during quote removal, with a buffer overflow...
GHSA-VRV9-CCJ3-G284 Jenkins IRC Plugin stores credentials in plain text
Jenkins IRC Plugin stores credentials unencrypted in its global configuration file hudson.plugins.ircbot.IrcPublisher.xml on the Jenkins controller. These credentials can be viewed by users with access to the Jenkins controller file system...
Jenkins IRC Plugin stores credentials in plain text
Jenkins IRC Plugin stores credentials unencrypted in its global configuration file hudson.plugins.ircbot.IrcPublisher.xml on the Jenkins controller. These credentials can be viewed by users with access to the Jenkins controller file system...
CVE-2020-8955
WeeChat is affected by CVE-2020-8955 via the irc_mode_channel_update path in plugins/irc/irc-mode.c. A crafted IRC message 324 (channel mode) can trigger a heap-based out-of-bounds write, causing a denial of service (application crash) and, per advisories, possibly arbitrary code execution. Upstr...
CVE-2019-1003051
Jenkins IRC Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...
CVE-2019-1003051
Jenkins IRC Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...
Design/Logic Flaw
Jenkins IRC Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...
CVE-2019-1003051
Affected software: Jenkins with the IRC Plugin. Vulnerability detail: Credentials are stored unencrypted in the plugin’s global configuration file on the Jenkins master, specifically inside hudson.plugins.ircbot.IrcPublisher.xml, accessible to anyone with Jenkins master filesystem access. Root ca...
CVE-2019-1003051
Jenkins IRC Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...
CVE-2019-1003051
Jenkins IRC Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...
PT-2019-11341 · Jenkins · Jenkins Irc Plugin
Name of the Vulnerable Software and Affected Versions: Jenkins IRC Plugin affected versions not specified Description: The issue concerns the storage of credentials in an unencrypted manner within the global configuration file on the Jenkins master or controller. Specifically, credentials are...
Debian: Security Advisory (DLA-919-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated weechat packages fix security vulnerability
It was discovered that weechat is prone to a buffer overflow vulnerability in the IRC plugin, allowing a remote attacker to cause a denial-of-service by sending a specially crafted filename via DCC CVE-2017-8073...
[SECURITY] [DSA 3836-1] weechat security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3836-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 27, 2017 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3836-1] weechat security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3836-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso April 27, 2017 https://www.debian.org/security/faq -...
Debian: Security Advisory (DSA-3836-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2017-8073
WeeChat before 1.7.1 allows a remote crash by sending a filename via DCC to the IRC plugin. This occurs in the ircctcpdccfilenamewithoutquotes function during quote removal, with a buffer overflow...
CVE-2017-8073
WeeChat before 1.7.1 allows a remote crash by sending a filename via DCC to the IRC plugin. This occurs in the ircctcpdccfilenamewithoutquotes function during quote removal, with a buffer overflow...
DEBIAN-CVE-2017-8073
WeeChat before 1.7.1 allows a remote crash by sending a filename via DCC to the IRC plugin. This occurs in the ircctcpdccfilenamewithoutquotes function during quote removal, with a buffer overflow...