Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
slackwareSlackware Linux ProjectSSA-2010-116-01
HistoryApr 26, 2010 - 7:08 a.m.

[slackware-security] irssi

2010-04-2607:08:48
Slackware Linux Project
www.slackware.com
10

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.254 Low

EPSS

Percentile

96.7%

JSON

New irssi packages are available for Slackware 10.1, 10.2, 11.0, 12.0, 12.1,
12.2, 13.0, and -current to fix security issues.

Here are the details from the Slackware 13.0 ChangeLog:

patches/packages/irssi-0.8.15-i486-1_slack13.0.txz: Upgraded.
From the NEWS file:
- Check if an SSL certificate matches the hostname of the server we are
connecting to.
- Fix crash when checking for fuzzy nick match when not on the channel.
Reported by Aurelien Delaitre (SATE 2009).
For more information, see:
https://vulners.com/cve/CVE-2010-1155
https://vulners.com/cve/CVE-2010-1156
(* Security fix *)

Where to find the new packages:

HINT: Getting slow download speeds from ftp.slackware.com?
Give slackware.osuosl.org a try. This is another primary FTP site
for Slackware that can be considerably faster than downloading
directly from ftp.slackware.com.

Thanks to the friendly folks at the OSU Open Source Lab
(http://osuosl.org) for donating additional FTP and rsync hosting
to the Slackware project! :-)

Also see the “Get Slack” section on http://slackware.com for
additional mirror sites near you.

Updated package for Slackware 10.1:
ftp://ftp.slackware.com/pub/slackware/slackware-10.1/patches/packages/irssi-0.8.15-i486-1_slack10.1.tgz

Updated package for Slackware 10.2:
ftp://ftp.slackware.com/pub/slackware/slackware-10.2/patches/packages/irssi-0.8.15-i486-1_slack10.2.tgz

Updated package for Slackware 11.0:
ftp://ftp.slackware.com/pub/slackware/slackware-11.0/patches/packages/irssi-0.8.15-i486-1_slack11.0.tgz

Updated package for Slackware 12.0:
ftp://ftp.slackware.com/pub/slackware/slackware-12.0/patches/packages/irssi-0.8.15-i486-1_slack12.0.tgz

Updated package for Slackware 12.1:
ftp://ftp.slackware.com/pub/slackware/slackware-12.1/patches/packages/irssi-0.8.15-i486-1_slack12.1.tgz

Updated package for Slackware 12.2:
ftp://ftp.slackware.com/pub/slackware/slackware-12.2/patches/packages/irssi-0.8.15-i486-1_slack12.2.tgz

Updated package for Slackware 13.0:
ftp://ftp.slackware.com/pub/slackware/slackware-13.0/patches/packages/irssi-0.8.15-i486-1_slack13.0.txz

Updated package for Slackware x86_64 13.0:
ftp://ftp.slackware.com/pub/slackware/slackware64-13.0/patches/packages/irssi-0.8.15-x86_64-1_slack13.0.txz

Updated package for Slackware -current:
ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/irssi-0.8.15-i486-1.txz

Updated package for Slackware x86_64 -current:
ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/irssi-0.8.15-x86_64-1.txz

MD5 signatures:

Slackware 10.1 package:
679eb1cd6da595da5b7533ab1a1220d7 irssi-0.8.15-i486-1_slack10.1.tgz

Slackware 10.2 package:
5b021642066bda5c60aacfd864b6845b irssi-0.8.15-i486-1_slack10.2.tgz

Slackware 11.0 package:
15ca6dbaf59e9068f67bfeeb4008527f irssi-0.8.15-i486-1_slack11.0.tgz

Slackware 12.0 package:
a12a40c36cf94fb286cc8b3194f7c772 irssi-0.8.15-i486-1_slack12.0.tgz

Slackware 12.1 package:
4c993dd2006c75403529abe1ae68604a irssi-0.8.15-i486-1_slack12.1.tgz

Slackware 12.2 package:
4634fb3fa26ada03311df2136adcf979 irssi-0.8.15-i486-1_slack12.2.tgz

Slackware 13.0 package:
2f81092f034dca9a218a0ea8e2e9cece irssi-0.8.15-i486-1_slack13.0.txz

Slackware x86_64 13.0 package:
074bae5a778ea6185de2bd7034da59f8 irssi-0.8.15-x86_64-1_slack13.0.txz

Slackware -current package:
eba73b0efffa1e065a32060f24097cab n/irssi-0.8.15-i486-1.txz

Slackware x86_64 -current package:
64b7dc784c9af2a2a0da5dd30522d515 n/irssi-0.8.15-x86_64-1.txz

Installation instructions:

Upgrade the package as root:
> upgradepkg irssi-0.8.15-i486-1_slack13.0.txz

Related

openvas 14
securityvulns 2
freebsd 1
nessus 9
ubuntu 2
debiancve 2
ubuntucve 2
nvd 2
prion 2
cvelist 2
cve 2
openvas
openvas
Ubuntu Update for irssi vulnerabilities USN-929-1
2010-04-16 00:00:00
Slackware Advisory SSA:2010-116-01 irssi
2012-09-11 00:00:00
Ubuntu: Security Advisory (USN-929-2)
2010-04-29 00:00:00
securityvulns
securityvulns
irssi multiple security vulnerabilities
2010-04-19 00:00:00
[USN-929-1] irssi vulnerabilities
2010-04-19 00:00:00
freebsd
freebsd
irssi -- multiple vulnerabilities
2010-04-16 00:00:00
nessus
nessus
openSUSE Security Update : irssi (openSUSE-SU-2010:0183-1)
2010-04-30 00:00:00
Slackware 10.1 / 10.2 / 11.0 / 12.0 / 12.1 / 12.2 / 13.0 / current : irssi (SSA:2010-116-01)
2010-04-26 00:00:00
FreeBSD : irssi -- multiple vulnerabilities (3b7967f1-49e8-11df-83fb-0015587e2cc1)
2010-04-20 00:00:00
ubuntu
ubuntu
irssi regression
2010-04-20 00:00:00
irssi vulnerabilities
2010-04-15 00:00:00
debiancve
debiancve
CVE-2010-1156
2010-04-16 19:30:00
CVE-2010-1155
2010-04-16 19:30:00
ubuntucve
ubuntucve
CVE-2010-1155
2010-04-14 00:00:00
CVE-2010-1156
2010-04-14 00:00:00
nvd
nvd
CVE-2010-1155
2010-04-16 19:30:00
CVE-2010-1156
2010-04-16 19:30:00
prion
prion
Code injection
2010-04-16 19:30:00
Null pointer dereference
2010-04-16 19:30:00
cvelist
cvelist
CVE-2010-1155
2010-04-16 19:00:00
CVE-2010-1156
2010-04-16 19:00:00
cve
cve
CVE-2010-1156
2010-04-16 19:30:00
CVE-2010-1155
2010-04-16 19:30:00

6.8 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.254 Low

EPSS

Percentile

96.7%

JSON
Related for SSA-2010-116-01
openvas14securityvulns2freebsd1nessus9ubuntu2debiancve2ubuntucve2nvd2prion2cvelist2cve2