[3.7] irssi: Multiple vulnerabilities (CVE-2017-9468, CVE-2017-9469)ID: oval:org.secpod.oval:def:1800238 | Date: (C)2018-03-29 (M)2022-08-31 |
Class: PATCH | Family: unix |
CVE-2017-9468: When receiving a DCC message without source nick/host, Irssi would attempt to dereference a NULL pointer. Fixed in:¶ Irssi 1.0.3 Reference:¶ Patch¶ CVE-2017-9469: When receiving certain incorrectly quoted DCC files, Irssi would try to find the terminating quote one byte before the allocated memory. Fixed in:¶ Irssi 1.0.3 Reference:¶ Patch¶
Platform: |
Alpine Linux 3.7 |