irssi 1.0.4-1ubuntu2.2 source package in Ubuntu
Changelog
irssi (1.0.4-1ubuntu2.2) artful-security; urgency=medium
* SECURITY UPDATE: buffer overread via incomplete escape codes
- debian/patches/CVE-2018-5205.patch: check for complete char in
src/core/misc.c.
- CVE-2018-5205
* SECURITY UPDATE: NULL dereference via setting channel topic without
specifying a sender
- debian/patches/CVE-2018-5206.patch: do not record topic change time
when sender is blank in src/irc/core/channel-events.c.
- CVE-2018-5206
* SECURITY UPDATE: buffer overread via incomplete variable argument
- debian/patches/CVE-2018-5207.patch: disable variable arguments code
in src/core/special-vars.c.
- CVE-2018-5207
* SECURITY UPDATE: heap overflow in completion code
- debian/patches/CVE-2018-5208.patch: check for direct match of
separator in src/fe-common/core/completion.c.
- CVE-2018-5208
-- Marc Deslauriers <email address hidden> Mon, 08 Jan 2018 14:37:24 -0500
Upload details
- Uploaded by:
- Marc Deslauriers
- Uploaded to:
- Artful
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- net
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| irssi_1.0.4.orig.tar.xz | 1006.8 KiB | b85c07dbafe178213eccdc69f5f8f0ac024dea01c67244668f91ec1c06b986ca |
| irssi_1.0.4-1ubuntu2.2.debian.tar.xz | 25.9 KiB | bb3d2e9c93f5b99af4f39b1d506d33c1459152b34ebab80e78c90dfd5fbd551d |
| irssi_1.0.4-1ubuntu2.2.dsc | 1.9 KiB | 03c8d53226820af9d98bdd0b821451c78bfb4cc3c5d45a48bd7e84fe971add93 |
Available diffs
Binary packages built by this source
- irssi: No summary available for irssi in ubuntu artful.
No description available for irssi in ubuntu artful.
- irssi-dbgsym: No summary available for irssi-dbgsym in ubuntu artful.
No description available for irssi-dbgsym in ubuntu artful.
- irssi-dev: No summary available for irssi-dev in ubuntu artful.
No description available for irssi-dev in ubuntu artful.
