PT-2018-17872 · Irssi+2 · Irssi+2

Joseph Bisch

Published

2018-02-15

Updated

2024-06-15

CVE-2018-7053

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Irssi versions prior to 1.0.7 Irssi versions 1.1.x prior to 1.1.1

Description A use-after-free issue occurs when SASL messages are received in an unexpected order.

Recommendations For Irssi versions prior to 1.0.7, update to version 1.0.7 or later. For Irssi versions 1.1.x prior to 1.1.1, update to version 1.1.1 or later.

Fix

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALT-PU-2020-1665

ALT-PU-2020-3488

ALT-PU-2024-3802

CVE-2018-7053

DSA-4162-1

MGASA-2018-0132

OPENSUSE-SU-2018:0475-1

OPENSUSE-SU-2018:0477-1

OPENSUSE-SU-2024:10865-1

USN-3590-1

Affected Products

Alt Linux

Irssi

Ubuntu

PT-2018-17872 · Irssi+2 · Irssi+2

CVE-2018-7053

Weakness Enumeration

Related Identifiers

Affected Products

References · 84