PT-2018-2900 · Irssi+2 · Irssi+2

Joseph Bisch

Publicado

2018-02-15

Atualizado

2024-06-15

CVE-2018-7054

CVSS v2.0

Crítica

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Irssi versions prior to 1.0.7 Irssi versions 1.1.x prior to 1.1.1

Description The issue is related to a use-after-free error that occurs when a server is disconnected during netsplits, potentially allowing a remote attacker to cause a denial of service or execute arbitrary code. This problem exists due to an incomplete fix for a previous issue.

Recommendations For Irssi versions prior to 1.0.7, update to version 1.0.7 or later. For Irssi versions 1.1.x prior to 1.1.1, update to version 1.1.1 or later.

Correção

Use After Free

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-416

Identificadores relacionados

ALT-PU-2020-1665

ALT-PU-2020-3488

ALT-PU-2024-3802

BDU:2019-02520

CVE-2018-7054

DSA-4162-1

MGASA-2018-0132

OPENSUSE-SU-2018:0475-1

OPENSUSE-SU-2018:0477-1

OPENSUSE-SU-2024:10865-1

USN-3590-1

USN-4046-1

Produtos afetados

Alt Linux

Irssi

Ubuntu

PT-2018-2900 · Irssi+2 · Irssi+2

CVE-2018-7054

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 93