CVE-2009-4016
Publication date 4 February 2010
Last updated 24 July 2024
Ubuntu priority
Integer underflow in the clean_string function in irc_string.c in (1) IRCD-hybrid 7.2.2 and 7.2.3, (2) ircd-ratbox before 2.2.9, and (3) oftc-hybrid before 1.6.8, when flatten_links is disabled, allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a LINKS command.
Status
Package | Ubuntu Release | Status |
---|---|---|
ircd-hybrid | ||
18.04 LTS bionic |
Fixed 1:7.2.2.dfsg.2-6ubuntu3
|
|
16.04 LTS xenial |
Fixed 1:7.2.2.dfsg.2-6ubuntu3
|
|
14.04 LTS trusty |
Fixed 1:7.2.2.dfsg.2-6ubuntu3
|
|
ircd-ratbox | ||
18.04 LTS bionic | Not in release | |
16.04 LTS xenial | Not in release | |
14.04 LTS trusty | Not in release | |
oftc-hybrid | ||
18.04 LTS bionic | Not in release | |
16.04 LTS xenial | Not in release | |
14.04 LTS trusty | Not in release | |
Patch details
Package | Patch details |
---|---|
ircd-hybrid |