[3.6] irssi: Multiple vulnerabilities (CVE-2017-9468, CVE-2017-9469)ID: oval:org.secpod.oval:def:1800355 | Date: (C)2018-03-28 (M)2023-12-20 |
Class: PATCH | Family: unix |
CVE-2017-9468: When receiving a DCC message without source nick/host, Irssi would attempt to dereference a NULL pointer. Fixed in: Irssi 1.0.3 Reference: Patch; CVE-2017-9469: When receiving certain incorrectly quoted DCC files, Irssi would try to find the terminating quote one byte before the allocated memory. Fixed in: Irssi 1.0.3 Reference: Patch;
Platform: |
Alpine Linux 3.6 |