CVE-2017-9468

Irssi could be made to crash if it received specially crafted network traffic ...

Debian Bug report logs - #879521 irssi: multiple vulnerabilities fixed in irssi 105 Package: src:irssi; Maintainer for src:irssi is Rhonda D'Vine <rhonda@debianorg>; Reported by: Yves-Alexis Perez <corsac@debianorg> Date: Sun, 22 Oct 2017 15:27:02 UTC Severity: grave Tags: fixed-upstream, security, upstream Foun ...

Debian Bug report logs - #864400 irssi: CVE-2017-9468 CVE-2017-9469 Package: src:irssi; Maintainer for src:irssi is Rhonda D'Vine <rhonda@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 8 Jun 2017 05:33:02 UTC Severity: important Tags: patch, security, upstream Found in version irssi/0 ...

Multiple vulnerabilities have been discovered in Irssi, a terminal based IRC client The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2017-9468 Joseph Bisch discovered that Irssi does not properly handle DCC messages without source nick/host A malicious IRC server can take advantage of this flaw ...

In Irssi before 103, when receiving a DCC message without source nick/host, it attempts to dereference a NULL pointer Thus, remote IRC servers can cause a crash ...