irssi 0.8.20-2ubuntu2.3 source package in Ubuntu
Changelog
irssi (0.8.20-2ubuntu2.3) zesty-security; urgency=medium
* SECURITY UPDATE: buffer overread via incomplete escape codes
- debian/patches/CVE-2018-5205.patch: check for complete char in
src/core/misc.c.
- CVE-2018-5205
* SECURITY UPDATE: NULL dereference via setting channel topic without
specifying a sender
- debian/patches/CVE-2018-5206.patch: do not record topic change time
when sender is blank in src/irc/core/channel-events.c.
- CVE-2018-5206
* SECURITY UPDATE: buffer overread via incomplete variable argument
- debian/patches/CVE-2018-5207.patch: disable variable arguments code
in src/core/special-vars.c.
- CVE-2018-5207
* SECURITY UPDATE: heap overflow in completion code
- debian/patches/CVE-2018-5208.patch: check for direct match of
separator in src/fe-common/core/completion.c.
- CVE-2018-5208
-- Marc Deslauriers <email address hidden> Mon, 08 Jan 2018 14:40:23 -0500
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Zesty
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- net
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| irssi_0.8.20.orig.tar.xz | 983.6 KiB | 7882c4e821f5aac469c5e69e69d7e235f4986101285c675e81a9a95bfb20505a |
| irssi_0.8.20-2ubuntu2.3.debian.tar.xz | 28.6 KiB | 50314e1ffa33b2601f12e639d332c1d8d04ae662146236b5ff1bfd19d4b03a3d |
| irssi_0.8.20-2ubuntu2.3.dsc | 2.0 KiB | a17ff545284b838e80bc7be8d2d5f34051f04857e35fbc4aaa47679f5d15fa7d |
Available diffs
Binary packages built by this source
- irssi: No summary available for irssi in ubuntu zesty.
No description available for irssi in ubuntu zesty.
- irssi-dbgsym: No summary available for irssi-dbgsym in ubuntu zesty.
No description available for irssi-dbgsym in ubuntu zesty.
- irssi-dev: No summary available for irssi-dev in ubuntu zesty.
No description available for irssi-dev in ubuntu zesty.
