Vulnerability CVE-2019-15717: Information
Description
Irssi 1.2.x before 1.2.2 has a use-after-free if the IRC server sends a double CAP.
Severity: CRITICAL (9.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
---|---|---|---|---|---|---|
irssi | sisyphus | 1.2.2-alt1 | 1.2.2-alt1 | ALT-PU-2020-3468-1 | 263095 | Fixed |
irssi | p10 | 1.2.2-alt1 | 1.2.2-alt1 | ALT-PU-2020-3468-1 | 263095 | Fixed |
irssi | p9 | 1.2.2-alt1 | 1.2.2-alt1 | ALT-PU-2020-3488-1 | 263100 | Fixed |
irssi | c10f1 | 1.2.2-alt1 | 1.2.2-alt1 | ALT-PU-2020-3468-1 | 263095 | Fixed |
irssi | c9f2 | 1.2.2-alt1 | 1.2.2-alt1 | ALT-PU-2024-3802-3 | 342505 | Fixed |
References to Advisories, Solutions, and Tools
Hyperlink | Resource |
---|---|
https://irssi.org/security/irssi_sa_2019_08.txt |
|
[oss-security] 20190829 Irssi 1.2.2:CVE-2019-15717 |
|
[oss-security] 20190829 Re: Irssi 1.2.2:CVE-2019-15717 |
|
USN-4119-1 |
|
FEDORA-2019-d2257607b8 |