Updated irssi packages fix security vulnerabilities
Publication date: 26 Jun 2017Type: security
Affected Mageia releases : 5
CVE: CVE-2017-9468 , CVE-2017-9469
Description
It was discovered that Irssi incorrectly handled certain DCC messages. A malicious IRC server could use this issue to cause Irssi to crash, resulting in a denial of service (CVE-2017-9468). Joseph Bisch discovered that Irssi incorrectly handled receiving incorrectly quoted DCC files. A remote attacker could possibly use this issue to cause Irssi to crash, resulting in a denial of service (CVE-2017-9469).
References
SRPMS
5/core
- irssi-0.8.21-1.1.mga5