Debian Security Advisory
DLA-1289-1 irssi -- LTS security update
- Date Reported:
- 22 Feb 2018
- Affected Packages:
- Security database references:
- In Mitre's CVE dictionary: CVE-2018-7050, CVE-2018-7051, CVE-2018-7052.
- More information:
It was discovered that there where a number of vulnerabilities in irssi, the terminal based IRC client:
Null pointer dereference for an
Certain nick names could result in out-of-bounds access when printing theme strings.
When the number of windows exceeds the available space, a crash could occur due to another NULL pointer dereference.
For Debian 7
Wheezy, these issues have been fixed in irssi version 0.8.15-5+deb7u5.
We recommend that you upgrade your irssi packages.