Attachment 178852 Details for Bug 216020 – Amend irssi vuln entry 3d6be69b-d365-11e6-a071-001e67f15f5a

[patch] Amend irssi vuln entry 3d6be69b-d365-11e6-a071-001e67f15f5a

patch_security_vuxml.patch (text/plain), 1.48 KB, created by VK on 2017-01-13 10:08:36 UTC

(hide)

Description:

Filename:

MIME Type:

Creator: VK

Created: 2017-01-13 10:08:36 UTC

Size: 1.48 KB

patch

obsolete

>Index: security/vuxml/vuln.xml
>===================================================================
>--- security/vuxml/vuln.xml	(revision 431363)
>+++ security/vuxml/vuln.xml	(working copy)
>@@ -751,7 +751,7 @@
> <body xmlns="http://www.w3.org/1999/xhtml">
> 	Irssi reports:
> 	<blockquote cite="https://irssi.org/security/irssi_sa_2017_01.txt">
>-	 Four vulnerabilities have been located in Irssi
>+	 Five vulnerabilities have been located in Irssi
> 	 <ul>
> 	 <li>A NULL pointer dereference in the nickcmp function found by
> 	 Joseph Bisch. (CWE-690)</li>
>@@ -761,6 +761,8 @@
> 	 by Joseph Bisch. (CWE-126)</li>
> 	 <li>Out of bounds read in certain incomplete character sequences
> 	 found by Hanno BÃ¶ck and independently by J. Bisch. (CWE-126)</li>
>+	 <li>Out of bounds read when Printing the value '%['. Found by
>+	 Hanno BÃ¶ck. (CWE-126)</li>
> 	 </ul>
> 	 These issues may result in denial of service (remote crash).
> 	</blockquote>
>@@ -771,6 +773,7 @@
> <cvename>CVE-2017-5194</cvename>
> <cvename>CVE-2017-5195</cvename>
> <cvename>CVE-2017-5196</cvename>
>+ <cvename>CVE-2017-5356</cvename>
> <freebsdpr>ports/215800</freebsdpr>
> <url>https://irssi.org/security/irssi_sa_2017_01.txt</url>
> </references>
>@@ -777,7 +780,7 @@
> <dates>
> <discovery>2017-01-03</discovery>
> <entry>2017-01-05</entry>
>- <modified>2017-01-07</modified>
>+ <modified>2017-01-13</modified>
> </dates>
> </vuln>
>

Actions: View | Diff

Attachments on bug 216020: 178852