Published: 22/10/2017 Updated: 14/03/2019

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

In Irssi prior to 1.0.5, overlong nicks or targets may result in a NULL pointer dereference while splitting the message.

Vulnerable Product	Search on Vulmon	Subscribe to Product
irssi irssi
debian debian linux 8.0
debian debian linux 9.0

Several security issues were fixed in Irssi ...

Multiple vulnerabilities have been discovered in Irssi, a terminal based IRC client The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2017-10965 Brian geeknik Carpenter of Geeknik Labs discovered that Irssi does not properly handle receiving messages with invalid time stamps A malicious IRC serve ...

Debian Bug report logs - #890674 irssi: CVE-2018-7054 Package: src:irssi; Maintainer for src:irssi is Rhonda D'Vine <rhonda@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 17 Feb 2018 15:45:05 UTC Severity: important Tags: patch, security, upstream Found in version irssi/100-1 Fixed i ...

Debian Bug report logs - #886475 irssi: CVE-2018-5205 CVE-2018-5206 CVE-2018-5207 CVE-2018-5208 Package: src:irssi; Maintainer for src:irssi is Rhonda D'Vine <rhonda@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 6 Jan 2018 14:42:02 UTC Severity: important Tags: fixed-upstream, patch, ...

Debian Bug report logs - #879521 irssi: multiple vulnerabilities fixed in irssi 105 Package: src:irssi; Maintainer for src:irssi is Rhonda D'Vine <rhonda@debianorg>; Reported by: Yves-Alexis Perez <corsac@debianorg> Date: Sun, 22 Oct 2017 15:27:02 UTC Severity: grave Tags: fixed-upstream, security, upstream Foun ...

Debian Bug report logs - #890678 irssi: CVE-2018-7050 Package: src:irssi; Maintainer for src:irssi is Rhonda D'Vine <rhonda@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 17 Feb 2018 15:48:05 UTC Severity: important Tags: patch, security, upstream Found in version irssi/0817-1 Fixed ...

Debian Bug report logs - #890677 irssi: CVE-2018-7051 Package: src:irssi; Maintainer for src:irssi is Rhonda D'Vine <rhonda@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 17 Feb 2018 15:48:02 UTC Severity: important Tags: patch, security, upstream Found in version irssi/0817-1 Fixed ...

Debian Bug report logs - #890676 irssi: CVE-2018-7052 Package: src:irssi; Maintainer for src:irssi is Rhonda D'Vine <rhonda@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 17 Feb 2018 15:45:11 UTC Severity: important Tags: patch, security, upstream Found in version irssi/0817-1 Fixed ...

In Irssi before 105, overlong nicks or targets may result in a NULL pointer dereference while splitting the message ...

Overlong nicks or targets may result in a NULL-pointer dereference in Irssi >= 0817 and < 105 while splitting the message Most IRC servers typically have length limits in place that would prevent this issue ...

CWE-476 https://irssi.org/security/irssi_sa_2017_10.txt http://openwall.com/lists/oss-security/2017/10/22/4 https://www.debian.org/security/2017/dsa-4016 https://usn.ubuntu.com/3465-1/https://nvd.nist.gov

Get Started

CVE-2017-15723

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect