[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 1318-1] irssi security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : irssi
Version        : 0.8.15-5+deb7u6
CVE ID         : CVE-2018-7051
Debian Bug     : #890677

It was discovered that there was an issue in the irssi IRC client where
certain nick names could result in out-of-bounds access when printing
theme strings.

For Debian 7 "Wheezy", this issue has been fixed in irssi version
0.8.15-5+deb7u6. It was incorrectly missing from the upload of
0.8.15-5+deb7u5 announced as part of DLA-1289-1. Thanks to Ben Hutchings
and Matus Uhlhar.

We recommend that you upgrade your irssi packages.


Regards,

- -- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

-----BEGIN PGP SIGNATURE-----
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=cQ8r
-----END PGP SIGNATURE-----


Reply to: