329 matches found
SUSE CVE-2024-46613
WeeChat before 4.4.2 has an integer overflow and resultant buffer overflow at core/core-string.c when there are more than two billion items in a list. This affects stringfreesplitshared , stringfreesplit, stringfreesplitcommand, and stringfreesplittags...
DEBIAN-CVE-2024-46613
WeeChat before 4.4.2 has an integer overflow and resultant buffer overflow at core/core-string.c when there are more than two billion items in a list. This affects stringfreesplitshared , stringfreesplit, stringfreesplitcommand, and stringfreesplittags...
CVE-2024-46613
WeeChat before 4.4.2 has an integer overflow and resultant buffer overflow at core/core-string.c when there are more than two billion items in a list. This affects stringfreesplitshared , stringfreesplit, stringfreesplitcommand, and stringfreesplittags...
CVE-2024-46613
WeeChat before 4.4.2 has an integer overflow and resultant buffer overflow at core/core-string.c when there are more than two billion items in a list. This affects stringfreesplitshared , stringfreesplit, stringfreesplitcommand, and stringfreesplittags...
UBUNTU-CVE-2024-46613
WeeChat before 4.4.2 has an integer overflow and resultant buffer overflow at core/core-string.c when there are more than two billion items in a list. This affects stringfreesplitshared , stringfreesplit, stringfreesplitcommand, and stringfreesplittags...
CVE-2024-46613
WeeChat before 4.4.2 has an integer overflow and resultant buffer overflow at core/core-string.c when there are more than two billion items in a list. This affects stringfreesplitshared , stringfreesplit, stringfreesplitcommand, and stringfreesplittags...
CVE-2024-46613
WeeChat is affected by CVE-2024-46613 for versions prior to 4.4.2. The vulnerability is an integer overflow that leads to a buffer overflow in core/core-string.c when there are more than two billion items in a list. Affected functions include string_free_split_shared, string_free_split, string_fr...
CVE-2024-46613
WeeChat before 4.4.2 has an integer overflow and resultant buffer overflow at core/core-string.c when there are more than two billion items in a list. This affects stringfreesplitshared , stringfreesplit, stringfreesplitcommand, and stringfreesplittags...
PT-2024-32077 · Weechat +1 · Weechat +1
Name of the Vulnerable Software and Affected Versions: WeeChat versions prior to 4.4.2 Description: The issue is caused by an integer overflow and resultant buffer overflow at core/core-string.c when there are more than two billion items in a list. This affects functions such as string free split...
WeeChat 安全漏洞
WeeChat is an extensible live chat client application from the WeeChat open source. A security vulnerability exists in WeeChat versions prior to 4.4.2, which stems from an integer overflow at core/core-string.c, which causes a buffer overflow when the list of items exceeds two billion...
CVE-2024-46613
WeeChat before 4.4.2 has an integer overflow and resultant buffer overflow at core/core-string.c when there are more than two billion items in a list. This affects stringfreesplitshared , stringfreesplit, stringfreesplitcommand, and stringfreesplittags...
OPENSUSE-SU-2024:11508-1 weechat-3.2-1.3 on GA media
These are all security issues fixed in the weechat-3.2-1.3 package on the GA media of openSUSE Tumbleweed...
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM : WeeChat vulnerabilities (USN-5258-1)
The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5258-1 advisory. Stuart Nevans Locke discovered that WeeChat's relay plugin insecurely handled malformed websocket frames. A remote attacker in...
SUSE CVE-2012-5534
The hookprocess function in the plugin API for WeeChat 0.3.0 through 0.3.9.1 allows remote attackers to execute arbitrary commands via shell metacharacters in a command from a plugin, related to "shell expansion."...
SUSE CVE-2012-5854
Heap-based buffer overflow in WeeChat 0.3.6 through 0.3.9 allows remote attackers to cause a denial of service crash or hang and possibly execute arbitrary code via crafted IRC colors that are not properly decoded...
SUSE CVE-2017-8073
WeeChat before 1.7.1 allows a remote crash by sending a filename via DCC to the IRC plugin. This occurs in the ircctcpdccfilenamewithoutquotes function during quote removal, with a buffer overflow...
SUSE CVE-2017-14727
logger.c in the logger plugin in WeeChat before 1.9.1 allows a crash via strftime date/time specifiers, because a buffer is not initialized...
SUSE CVE-2020-8955
ircmodechannelupdate in plugins/irc/irc-mode.c in WeeChat through 2.7 allows remote attackers to cause a denial of service buffer overflow and application crash or possibly have unspecified other impact via a malformed IRC message 324 channel mode...
SUSE CVE-2020-9760
An issue was discovered in WeeChat before 2.7.1 0.3.4 to 2.7 are affected. When a new IRC message 005 is received with longer nick prefixes, a buffer overflow and possibly a crash can happen when a new mode is set for a nick...
SUSE CVE-2021-40516
WeeChat before 3.2.1 allows remote attackers to cause a denial of service crash via a crafted WebSocket frame that trigger an out-of-bounds read in plugins/relay/relay-websocket.c in the Relay plugin...