Published: 15/02/2018 Updated: 28/02/2019

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

An issue exists in Irssi prior to 1.0.7 and 1.1.x prior to 1.1.1. Certain nick names could result in out-of-bounds access when printing theme strings.

Vulnerable Product	Search on Vulmon	Subscribe to Product
irssi irssi 1.1.0
irssi irssi
debian debian linux 7.0
debian debian linux 9.0
canonical ubuntu linux 14.04
canonical ubuntu linux 17.10
canonical ubuntu linux 16.04

Several security issues were fixed in Irssi ...

Multiple vulnerabilities have been discovered in Irssi, a terminal-based IRC client which can result in denial of service For the stable distribution (stretch), these problems have been fixed in version 107-1~deb9u1 We recommend that you upgrade your irssi packages For the detailed security status of irssi please refer to its security tracker ...

Debian Bug report logs - #890674 irssi: CVE-2018-7054 Package: src:irssi; Maintainer for src:irssi is Rhonda D'Vine <rhonda@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 17 Feb 2018 15:45:05 UTC Severity: important Tags: patch, security, upstream Found in version irssi/100-1 Fixed i ...

Debian Bug report logs - #886475 irssi: CVE-2018-5205 CVE-2018-5206 CVE-2018-5207 CVE-2018-5208 Package: src:irssi; Maintainer for src:irssi is Rhonda D'Vine <rhonda@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 6 Jan 2018 14:42:02 UTC Severity: important Tags: fixed-upstream, patch, ...

Debian Bug report logs - #890678 irssi: CVE-2018-7050 Package: src:irssi; Maintainer for src:irssi is Rhonda D'Vine <rhonda@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 17 Feb 2018 15:48:05 UTC Severity: important Tags: patch, security, upstream Found in version irssi/0817-1 Fixed ...

Debian Bug report logs - #890677 irssi: CVE-2018-7051 Package: src:irssi; Maintainer for src:irssi is Rhonda D'Vine <rhonda@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 17 Feb 2018 15:48:02 UTC Severity: important Tags: patch, security, upstream Found in version irssi/0817-1 Fixed ...

Debian Bug report logs - #890676 irssi: CVE-2018-7052 Package: src:irssi; Maintainer for src:irssi is Rhonda D'Vine <rhonda@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 17 Feb 2018 15:45:11 UTC Severity: important Tags: patch, security, upstream Found in version irssi/0817-1 Fixed ...

An out of bound read was found in Irssi, version 087 and later, when dealing with malformed theme strings An attacker could trigger the vulnerability by using specific nick names that could potentially cause a crash in the application ...

An issue was discovered in Irssi before 107 and 11x before 111 Certain nick names could result in out-of-bounds access when printing theme strings ...

CWE-125 https://irssi.org/security/irssi_sa_2018_02.txt http://openwall.com/lists/oss-security/2018/02/15/1 https://usn.ubuntu.com/3590-1/https://lists.debian.org/debian-lts-announce/2018/03/msg00021.html https://www.debian.org/security/2018/dsa-4162 https://usn.ubuntu.com/3590-1/https://nvd.nist.gov

Get Started

CVE-2018-7051

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect