Your submission was sent successfully! Close

CVE-2017-9468

Published: 06 June 2017

In Irssi before 1.0.3, when receiving a DCC message without source nick/host, it attempts to dereference a NULL pointer. Thus, remote IRC servers can cause a crash.

Priority

Low

CVSS 3 base score: 7.5

Status

Package Release Status
irssi
Launchpad, Ubuntu, Debian
Upstream Needs triage

Ubuntu 16.04 ESM (Xenial Xerus)
Released (0.8.19-1ubuntu1.4)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist
(trusty was released [0.8.15-5ubuntu3.2])
Patches:
Upstream: https://github.com/irssi/irssi/commit/528f51bfbe5c65c5b24546faa244009dd5b3c586