Your submission was sent successfully! Close

You have successfully unsubscribed! Close

CVE-2017-15721

Published: 22 October 2017

In Irssi before 1.0.5, certain incorrectly formatted DCC CTCP messages could cause a NULL pointer dereference. This is a separate, but similar, issue relative to CVE-2017-9468.

Notes

AuthorNote
mdeslaur 
same commit as CVE-2017-15227
Priority

Medium

CVSS 3 base score: 7.5

Status

Package Release Status
irssi
Launchpad, Ubuntu, Debian 		artful
Released (1.0.4-1ubuntu2.1)
precise Does not exist

trusty Does not exist
(trusty was released [0.8.15-5ubuntu3.3])
upstream Needs triage

xenial
Released (0.8.19-1ubuntu1.5)
zesty
Released (0.8.20-2ubuntu2.2)
Patches:
upstream: https://github.com/irssi/irssi/commit/43e44d553d44e313003cee87e6ea5e24d68b84a1

References

Bugs

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading