Debian Bug report logs -
#857502
irssi: CVE-2017-7191: use after free condition during netjoin processing
Reported by: bugs@debian.16bits.net
Date: Sun, 12 Mar 2017 00:57:02 UTC
Severity: grave
Tags: fixed-upstream, security, upstream
Found in version irssi/1.0.1-1
Fixed in version irssi/1.0.2-1
Done: Rhonda D'Vine <rhonda@debian.org>
Bug is archived. No further changes may be made.
Toggle useless messages
Report forwarded
to debian-bugs-dist@lists.debian.org, Rhonda D'Vine <rhonda@debian.org>:
Bug#857502; Package irssi.
(Sun, 12 Mar 2017 00:57:05 GMT) (full text, mbox, link).
Acknowledgement sent
to bugs@debian.16bits.net:
New Bug report received and forwarded. Copy sent to Rhonda D'Vine <rhonda@debian.org>.
(Sun, 12 Mar 2017 00:57:05 GMT) (full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Package: irssi
Version: 1.0.1-1
Severity: important
"Irssi 1.0.2 has been released. This release fixes a remote crash issue in Irssi 1.0 as well as a few bug fixes, the most notable a regression that broke incoming DCC file transfers. T
here are no new features. All Irssi 1.0 users should upgrade to this version."
- https://irssi.org/2017/03/11/irssi-1.0.2-released/
"Use after free while producing list of netjoins (CWE-416)
This issue usually leads to segmentation faults. Targeted code
execution should be difficult.
We believe Irssi 0.8.21 and prior are not affected since a different
code path causes the netjoins to be flushed prior to reaching the use
after free condition."
- https://irssi.org/security/irssi_sa_2017_03.txt
Thus stretch/sid (version 1.0.1-1) and jessie-backports (1.0.0-1~bpo8+1) are affected but jessie (0.8.17-1+deb8u3) is not
Severity set to 'grave' from 'important'
Request was from Salvatore Bonaccorso <carnil@debian.org>
to control@bugs.debian.org.
(Sun, 12 Mar 2017 16:24:08 GMT) (full text, mbox, link).
Added tag(s) security, fixed-upstream, and upstream.
Request was from Salvatore Bonaccorso <carnil@debian.org>
to control@bugs.debian.org.
(Sun, 12 Mar 2017 16:24:10 GMT) (full text, mbox, link).
Reply sent
to Rhonda D'Vine <rhonda@debian.org>:
You have taken responsibility.
(Mon, 13 Mar 2017 00:21:03 GMT) (full text, mbox, link).
Notification sent
to bugs@debian.16bits.net:
Bug acknowledged by developer.
(Mon, 13 Mar 2017 00:21:03 GMT) (full text, mbox, link).
Message #14 received at 857502-close@bugs.debian.org (full text, mbox, reply):
Source: irssi
Source-Version: 1.0.2-1
We believe that the bug you reported is fixed in the latest version of
irssi, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 857502@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Rhonda D'Vine <rhonda@debian.org> (supplier of updated irssi package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Sat, 11 Mar 2017 10:52:54 +0100
Source: irssi
Binary: irssi irssi-dev
Architecture: source amd64
Version: 1.0.2-1
Distribution: unstable
Urgency: high
Maintainer: Rhonda D'Vine <rhonda@debian.org>
Changed-By: Rhonda D'Vine <rhonda@debian.org>
Description:
irssi - terminal based IRC client
irssi-dev - terminal based IRC client - development files
Closes: 857502
Changes:
irssi (1.0.2-1) unstable; urgency=high
.
* New upstream pure bugfix release:
- Prevent some null-pointer crashes.
- Fix compilation with OpenSSL 1.1.0.
- Correct dereferencing of already freed server objects during
output of netjoins. Found by APic. (closes: #857502)
- Fix in command arg parser to detect missing arguments in tail place.
- Fix regression that broke incoming DCC file transfers.
- Fix issue with escaping \ in evaluated strings.
Checksums-Sha1:
f80c74f5dba88e81410c6063c3de8812cc2fa0ea 1896 irssi_1.0.2-1.dsc
37d2e6bd58554204d142acbeff67d9aea70d7305 1027912 irssi_1.0.2.orig.tar.xz
9d5d7213b164b4789b0ecc5e1daafe68cb84f58b 19352 irssi_1.0.2-1.debian.tar.xz
7e3b6674b1cad296df98e6b80a245a44bc676fdf 2940890 irssi-dbgsym_1.0.2-1_amd64.deb
d43c68c3f997be955489ad4b900212108f616094 449206 irssi-dev_1.0.2-1_amd64.deb
8d3ec796639aeddbb53f05350e5f342a1a6447c7 5768 irssi_1.0.2-1_amd64.buildinfo
c5620bc8d179f921cc6304f5d6716e962b67a7d4 1075142 irssi_1.0.2-1_amd64.deb
Checksums-Sha256:
e950cd013b09f9f7fba5348bc55d3c838e971f74275f4905bed260d8bcc665bd 1896 irssi_1.0.2-1.dsc
5c1c3cc2caf103aad073fadeb000e0f8cb3b416833a7f43ceb8bd9fcf275fbe9 1027912 irssi_1.0.2.orig.tar.xz
39993d1788832d16d978fce143d042983beb30c646a994747c5215eee8dd51a5 19352 irssi_1.0.2-1.debian.tar.xz
ef8ad6eb675504c73fdb8bacd864e36c37a93b0c784cd6b39de9d3ec23f169ea 2940890 irssi-dbgsym_1.0.2-1_amd64.deb
a4322d0ab0351a39044ba8a76f66cc96fb9c9afeb24d21ef32e8120673e5a062 449206 irssi-dev_1.0.2-1_amd64.deb
ca522f26d95d8dbebf8cfc899310945a29936f7794c63d9d71239263fefa6697 5768 irssi_1.0.2-1_amd64.buildinfo
6139900b0bb2b010a8eefc7c31b45e5bfe0c2fd7f21134a54d97e51036d3579e 1075142 irssi_1.0.2-1_amd64.deb
Files:
cfe84f0380cbb34f987a4a0876ef3a7b 1896 net optional irssi_1.0.2-1.dsc
6de949527c07f0930f0c6c95a8d8b99a 1027912 net optional irssi_1.0.2.orig.tar.xz
672f10974a90869073972be1bf59b58f 19352 net optional irssi_1.0.2-1.debian.tar.xz
57a3ae029126461ea32d76a2cda3a725 2940890 debug extra irssi-dbgsym_1.0.2-1_amd64.deb
de2b07a0574820720feada52b89cc823 449206 net extra irssi-dev_1.0.2-1_amd64.deb
45e3a8dd92caf8ee7c1ded6d5c4e68d0 5768 net optional irssi_1.0.2-1_amd64.buildinfo
138f6413678bb8e3911a670c497d71e3 1075142 net optional irssi_1.0.2-1_amd64.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1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=zEcy
-----END PGP SIGNATURE-----
Changed Bug title to 'irssi: CVE-2017-7191: use after free condition during netjoin processing' from 'Remote crash while producing list of netjoins '.
Request was from Salvatore Bonaccorso <carnil@debian.org>
to control@bugs.debian.org.
(Mon, 20 Mar 2017 18:03:04 GMT) (full text, mbox, link).
Bug archived.
Request was from Debbugs Internal Request <owner@bugs.debian.org>
to internal_control@bugs.debian.org.
(Tue, 18 Apr 2017 07:24:41 GMT) (full text, mbox, link).
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Wed Jun 19 14:50:01 2019;
Machine Name:
buxtehude
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.
Vulmon