CVE-2009-4016

Publication date 4 February 2010

Last updated 24 July 2024


Ubuntu priority

Integer underflow in the clean_string function in irc_string.c in (1) IRCD-hybrid 7.2.2 and 7.2.3, (2) ircd-ratbox before 2.2.9, and (3) oftc-hybrid before 1.6.8, when flatten_links is disabled, allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a LINKS command.

Status

Package Ubuntu Release Status
ircd-hybrid 18.10 cosmic
Fixed 1:7.2.2.dfsg.2-6ubuntu3
18.04 LTS bionic
Fixed 1:7.2.2.dfsg.2-6ubuntu3
17.10 artful
Fixed 1:7.2.2.dfsg.2-6ubuntu3
17.04 zesty
Fixed 1:7.2.2.dfsg.2-6ubuntu3
16.10 yakkety
Fixed 1:7.2.2.dfsg.2-6ubuntu3
16.04 LTS xenial
Fixed 1:7.2.2.dfsg.2-6ubuntu3
15.10 wily
Fixed 1:7.2.2.dfsg.2-6ubuntu3
15.04 vivid
Fixed 1:7.2.2.dfsg.2-6ubuntu3
14.10 utopic
Fixed 1:7.2.2.dfsg.2-6ubuntu3
14.04 LTS trusty
Fixed 1:7.2.2.dfsg.2-6ubuntu3
13.10 saucy
Fixed 1:7.2.2.dfsg.2-6ubuntu3
13.04 raring
Fixed 1:7.2.2.dfsg.2-6ubuntu3
12.10 quantal
Fixed 1:7.2.2.dfsg.2-6ubuntu3
12.04 LTS precise
Fixed 1:7.2.2.dfsg.2-6ubuntu3
11.10 oneiric
Fixed 1:7.2.2.dfsg.2-6ubuntu3
11.04 natty
Fixed 1:7.2.2.dfsg.2-6ubuntu3
10.10 maverick
Fixed 1:7.2.2.dfsg.2-6ubuntu3
10.04 LTS lucid
Fixed 1:7.2.2.dfsg.2-6ubuntu3
9.10 karmic
Fixed 1:7.2.2.dfsg.2-6ubuntu2.0.9.10.1
9.04 jaunty
Fixed 1:7.2.2.dfsg.2-6ubuntu1.1
8.10 intrepid
Fixed 1:7.2.2.dfsg.2-4+lenny1build0.8.10.1
8.04 LTS hardy
Fixed 1:7.2.2.dfsg.2-3+etch1build0.8.04.1
6.06 LTS dapper Ignored end of life
ircd-ratbox 18.10 cosmic Not in release
18.04 LTS bionic Not in release
17.10 artful Not in release
17.04 zesty Not in release
16.10 yakkety Not in release
16.04 LTS xenial Not in release
15.10 wily Ignored end of life
15.04 vivid Ignored end of life
14.10 utopic Ignored end of life
14.04 LTS trusty Not in release
13.10 saucy Ignored end of life
13.04 raring Ignored end of life
12.10 quantal Ignored end of life
12.04 LTS precise Ignored end of life
11.10 oneiric Ignored end of life
11.04 natty Ignored end of life
10.10 maverick Ignored end of life
10.04 LTS lucid Ignored end of life
9.10 karmic Ignored end of life
9.04 jaunty Ignored end of life
8.10 intrepid Ignored end of life
8.04 LTS hardy Ignored end of life
6.06 LTS dapper Not in release
oftc-hybrid 18.10 cosmic Not in release
18.04 LTS bionic Not in release
17.10 artful Not in release
17.04 zesty Not in release
16.10 yakkety Not in release
16.04 LTS xenial Not in release
15.10 wily Not in release
15.04 vivid Not in release
14.10 utopic Not in release
14.04 LTS trusty Not in release
13.10 saucy Not in release
13.04 raring Ignored end of life
12.10 quantal Ignored end of life
12.04 LTS precise Ignored end of life
11.10 oneiric Ignored end of life
11.04 natty Ignored end of life
10.10 maverick Ignored end of life
10.04 LTS lucid Ignored end of life
9.10 karmic Ignored end of life
9.04 jaunty Ignored end of life
8.10 intrepid Ignored end of life
8.04 LTS hardy Ignored end of life
6.06 LTS dapper Not in release

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package Patch details
ircd-hybrid