PT-2020-20742 · Weechat+3 · Weechat+3

Published

2020-03-23

Updated

2022-04-01

CVE-2020-9760

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions WeeChat versions 0.3.4 through 2.7

Description An issue was discovered in WeeChat where a buffer overflow and possibly a crash can happen when a new IRC message 005 is received with longer nick prefixes and a new mode is set for a nick.

Recommendations For WeeChat versions 0.3.4 through 2.7, update to version 2.7.1 or later to resolve the issue.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-120

Related Identifiers

ALT-PU-2020-1694

CVE-2020-9760

DLA-2157-1

DLA-2770-1

MGASA-2020-0153

USN-5258-1

Affected Products

Alt Linux

Linuxmint

Ubuntu

Weechat

PT-2020-20742 · Weechat+3 · Weechat+3

CVE-2020-9760

Weakness Enumeration

Related Identifiers

Affected Products

References · 26