PT-2017-13656 · Weechat+3 · Weechat+3

Published

2017-09-23

·

Updated

2024-06-15

·

CVE-2017-14727

CVSS v3.1

7.5

High

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions WeeChat versions prior to 1.9.1
Description The issue allows a crash via strftime date/time specifiers because a buffer is not initialized in the logger plugin.
Recommendations For WeeChat versions prior to 1.9.1, update to version 1.9.1 or later to resolve the issue.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

ALT-PU-2017-2672
CVE-2017-14727
DLA-1111-1
MGASA-2017-0369
OPENSUSE-SU-2024:11508-1
USN-5258-1

Affected Products

Alt Linux
Linuxmint
Ubuntu
Weechat