4 matches found
MGASA-2021-0255 Updated irssi packages fix security vulnerabilities
The irssi packages are updated to irssi 1.2.3 to fix several issues among some security vulnerabilities: memory handling issues memory leaks erroneous free crashes / freezes null pointer dereference when receiving broken JOIN record...
MGASA-2018-0132 Updated irssi packages fix security vulnerability
Null pointer dereference when an "empty" nick has been observed by Irssi CVE-2018-7050. Certain nick names could result in out of bounds access when printing theme strings CVE-2018-7051. When the number of windows exceed the available space, Irssi would crash due to Null pointer dereference...
MGASA-2017-0216 Updated irssi packages fix security vulnerabilities
A malicious server could cause irssi to crash by providing an invalid timestamp CVE-2017-10965. Undefined behavior may be triggered when irssi updates the internal nick list CVE-2017-10966...
MGASA-2016-0384 Updated irssi packages fix security vulnerability
An information disclosure vulnerability was found in the buf.pl core script for irssi. Other users on the same machine may be able to retrieve the whole window contents after /UPGRADE when the buf.pl script is loaded. Furthermore, this dump of the windows contents is never removed afterwards...