Joseph Bisch

**Name of the Vulnerable Software and Affected Versions** Irssi versions prior to 1.0.7 Irssi versions 1.1.x prior to 1.1.1 **Description** An issue was discovered that causes a crash due to a NULL pointer dereference when the number of windows exceeds the available space. **Recommendations** For Irssi versions prior to 1.0.7, update to version 1.0.7 or later. For Irssi versions 1.1.x prior to 1.1.1, update to version 1.1.1 or later.

**Name of the Vulnerable Software and Affected Versions** Irssi versions prior to 1.0.7 Irssi versions 1.1.x prior to 1.1.1 **Description** A use-after-free issue occurs when SASL messages are received in an unexpected order. **Recommendations** For Irssi versions prior to 1.0.7, update to version 1.0.7 or later. For Irssi versions 1.1.x prior to 1.1.1, update to version 1.1.1 or later.

**Name of the Vulnerable Software and Affected Versions** Irssi versions prior to 1.0.7 Irssi versions 1.1.x prior to 1.1.1 **Description** The issue is related to a use-after-free error that occurs when a server is disconnected during netsplits, potentially allowing a remote attacker to cause a denial of service or execute arbitrary code. This problem exists due to an incomplete fix for a previous issue. **Recommendations** For Irssi versions prior to 1.0.7, update to version 1.0.7 or later. For Irssi versions 1.1.x prior to 1.1.1, update to version 1.1.1 or later.

**Name of the Vulnerable Software and Affected Versions** Irssi versions prior to 1.0.6 **Description** The issue arises when using an incomplete variable argument, potentially allowing access to data beyond the end of the string. **Recommendations** For versions prior to 1.0.6, update to version 1.0.6 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Irssi versions prior to 1.0.6 **Description** The issue arises when using incomplete escape codes, potentially allowing access to data beyond the end of the string. **Recommendations** For versions prior to 1.0.6, update to version 1.0.6 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Irssi versions prior to 1.0.6 **Description** The issue occurs when the channel topic is set without specifying a sender. In such cases, Irssi may dereference a NULL pointer, which can lead to problems. **Recommendations** For versions prior to 1.0.6, update to version 1.0.6 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Konversation versions 1.4.x through 1.7.x before 1.7.3 **Description** The issue allows remote attackers to cause a denial of service, resulting in a crash, via vectors related to parsing of IRC color formatting codes. **Recommendations** For versions 1.4.x through 1.7.x before 1.7.3, update to version 1.7.3 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Irssi versions prior to 1.0.5 **Description** The issue arises when Irssi is waiting for channel synchronisation and fails to remove destroyed channels from the query list, leading to use-after-free conditions when the state is updated later. **Recommendations** For versions prior to 1.0.5, update to version 1.0.5 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Irssi versions prior to 1.0.5 **Description** The issue arises from certain incorrectly formatted DCC CTCP messages that could cause a NULL pointer dereference. This problem is separate but similar to other known issues. **Recommendations** For versions prior to 1.0.5, update to version 1.0.5 or later to resolve the issue. As a temporary workaround, consider restricting the handling of DCC CTCP messages until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Irssi versions prior to 1.0.5 **Description** The issue arises when the software fails to verify that a Safe channel ID is of sufficient length, leading to reads beyond the end of the string. This can occur in certain cases. **Recommendations** For versions prior to 1.0.5, update to version 1.0.5 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Irssi versions prior to 1.0.5 **Description** The issue occurs when overlong nicks or targets are processed, resulting in a NULL pointer dereference while splitting the message. This can happen in Irssi when the software attempts to handle excessively long nicknames or targets, leading to a crash or potential exploitation. **Recommendations** For Irssi versions prior to 1.0.5, update to version 1.0.5 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Irssi versions prior to 1.0.3 **Description** The issue arises when Irssi receives certain incorrectly quoted DCC files, causing it to attempt to find the terminating quote one byte before the allocated memory. This could allow remote attackers to cause a crash. **Recommendations** For versions prior to 1.0.3, update to version 1.0.3 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Pidgin versions prior to 2.12.0 **Description** An out-of-bounds write flaw was found in the way Pidgin processed XML content. A malicious remote server could potentially use this flaw to crash Pidgin or execute arbitrary code in the context of the pidgin process. **Recommendations** For versions prior to 2.12.0, update to version 2.12.0 or later to resolve the issue. As a temporary workaround, consider restricting access to untrusted XML content until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** Irssi versions 0.8.17 through 0.8.20 **Description** The issue allows remote attackers to cause a denial of service, resulting in an out-of-bounds read and crash, via a crafted ANSI x8 color code. **Recommendations** For Irssi versions 0.8.17 through 0.8.20, update to version 0.8.21 or later to resolve the issue.