USN-4046-1: Irssi vulnerabilities

04 July 2019

Several security issues were fixed in Irssi.

Releases

Packages

  • irssi - terminal based IRC client

Details

It was discovered that Irssi incorrectly handled certain disconnections.
An attacker could possibly use this issue to cause a denial of service
or execute arbitrary code. This issue only affected Ubuntu 18.04 LTS.
(CVE-2018-7054)

It was discovered that Irssi incorrectly handled certain requests.
An attacker could possibly use this issue to cause a denial of service
or execute arbitrary code. (CVE-2019-13045)

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 19.04
Ubuntu 18.10
Ubuntu 18.04
Ubuntu 16.04

After a standard system update you need to restart Irssi to make all the necessary changes.

Related notices