Skip to content

GitLab

  • Projects
  • Groups
  • Snippets
  • Help
    • Loading...
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
    • Contribute to GitLab
  • Sign in / Register
aports
aports
  • Project overview
    • Project overview
    • Details
    • Activity
    • Releases
  • Repository
    • Repository
    • Files
    • Commits
    • Branches
    • Tags
    • Contributors
    • Graph
    • Compare
  • Issues 647
    • Issues 647
    • List
    • Boards
    • Labels
    • Service Desk
    • Milestones
  • Merge Requests 177
    • Merge Requests 177
  • CI / CD
    • CI / CD
    • Pipelines
    • Jobs
    • Schedules
  • Operations
    • Operations
    • Environments
  • Analytics
    • Analytics
    • CI / CD
    • Repository
    • Value Stream
  • Members
    • Members
  • Collapse sidebar
  • Activity
  • Graph
  • Create a new issue
  • Jobs
  • Commits
  • Issue Boards
  • alpine
  • aportsaports
  • Issues
  • #7393

Closed
Open
Opened Jun 07, 2017 by Alicha CH@alichaReporter
  • Report abuse
  • New issue
Report abuse New issue

irssi: Multiple vulnerabilities (CVE-2017-9468, CVE-2017-9469)

CVE-2017-9468: When receiving a DCC message without source nick/host, Irssi would
attempt to dereference a NULL pointer.

Fixed in:

Irssi 1.0.3

Reference:

https://irssi.org/security/irssi\_sa\_2017\_06.txt

Patch

https://github.com/irssi/irssi/commit/fb08fc7f1aa6b2e616413d003bf021612301ad55

CVE-2017-9469: When receiving certain incorrectly quoted DCC files, Irssi would
try to find the terminating quote one byte before the allocated memory.

Fixed in:

Irssi 1.0.3

Reference:

https://irssi.org/security/irssi\_sa\_2017\_06.txt

Patch

https://github.com/irssi/irssi/commit/fb08fc7f1aa6b2e616413d003bf021612301ad55

(from redmine: issue id 7393, created on 2017-06-07, closed on 2017-06-15)

  • Relations:
    • child #7394 (closed)
    • child #7395 (closed)
    • child #7396 (closed)
    • child #7397 (closed)
    • child #7398 (closed)
To upload designs, you'll need to enable LFS and have admin enable hashed storage. More information
Assignee
Assign to
None
Milestone
None
Assign milestone
Time tracking
None
Due date
None
3
Labels
Normal tag:security type:bug
Assign labels
  • View project labels
Reference: alpine/aports#7393