oss-sec mailing list archives
Re: CVE Request: Irssi Multiple Vulnerabilities (2017/01)
From: <cve-assign () mitre org>
Date: Fri, 6 Jan 2017 03:16:14 -0500
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256
(a) A NULL pointer dereference in the nickcmp function found by Joseph Bisch. (CWE-690)
Use CVE-2017-5193.
(b) Use after free when receiving invalid nick message (Issue #466, CWE-146)
Use CVE-2017-5194.
(c) Out of bounds read in certain incomplete control codes found by Joseph Bisch. (CWE-126)
Use CVE-2017-5195.
(d) Out of bounds read in certain incomplete character sequences found by Hanno Boeck and independently by J. Bisch. (CWE-126)
Use CVE-2017-5196. - -- CVE Assignment Team M/S M300, 202 Burlington Road, Bedford, MA 01730 USA [ A PGP key is available for encrypted communications at http://cve.mitre.org/cve/request_id.html ] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJYb1HsAAoJEHb/MwWLVhi2oxsP/jjLY6oz9mByhAkhID79sf2N E0n/K0n0t228gqe515xPe3+IKnNETQql8dkGbiyDZSh0XJk1VMstJV/wfy6kqPG/ pP+zb8cfpOi3Y8ept5NowUauadzbWvMkxewXmtjsPinTJKPqYxg21Sg1itx6/3gL cLpxertHOzFZc7GG1mDhvlisQy0jsZNi/NznCJunYhqrOfjtEDSUiDClWLpO5qx2 OAEXlxJqeNGmZ670NLs37oGH2AYqKbQMwOw+KyNoUHufIDkwyC+7nd69Y6b2a9Oc FpLUheRRzO6lQ8XrakNqdrWx+V47hhCwx4Fd7zshCalat91bCA3bhHNVvIIz7Jb0 la+rFjHNhHbPtxj/BowDp374MbbUT+RJyi51HYPjghb7w89ztOUWoikWAJAGL9pz HWsO25KxxBL6fZowWLm0gUTAgmuULpxmHC9csaszZZQVTKQ1UVMFdhzihFRdS8hF sveMm3Td0bo0EuZ804sUxaYDFg48tyolld3BmPUscMfQ5BBQHypRzXnpc/jblxat 52z5xVHpWwcfwB+GeGOVygeOGfRzckzm22L/I4hveJe7wtWn4QpB0IbYeSYr7RgN HnSxMmPx/f1FPPvD7/Z1RNCi2AhUIVCe9NONLLnHdSqCr+sD0h3899++BWbmV/xn Swdkrn3C9vrjcoAglyPY =udlU -----END PGP SIGNATURE-----
Current thread:
- CVE Request: Irssi Multiple Vulnerabilities (2017/01) Ailin Nemui (Jan 05)
- Re: CVE Request: Irssi Multiple Vulnerabilities (2017/01) cve-assign (Jan 06)