Bug 117746

Summary: CVE-2007-5226 irc/dircproxy segfault on blank /me
Product: Ports & Packages Reporter: Michael Moll <mmoll>
Component: Individual Port(s)Assignee: Martin Wilke <miwi>
Status: Closed FIXED    
Severity: Affects Only Me    
Priority: Normal    
Version: Latest   
Hardware: Any   
OS: Any   
Attachments:
Description Flags
file.diff none

Description Michael Moll freebsd_committer freebsd_triage 2007-11-01 16:40:00 UTC 
I use dircproxy1.20-beta2. When it receives a blank "/me" it crashes, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5226
https://bugzilla.redhat.com/show_bug.cgi?id=319301
http://dircproxy.securiweb.net/ticket/89

Fix: I attached the fix for 1.2.0 taken from Rehat's Bugzilla.
A fix for 1.0.5 is available here:
http://bugs.debian.org/cgi-bin/bugreport.cgi?msg=10;filename=nmu.patch;att=1;bug=445883

Patch attached with submission follows:
How-To-Repeat: Send a blank "/me" to a channel and watch the EOFs of people with unpatched clients
Comment 1 Martin Wilke freebsd_committer freebsd_triage 2007-11-01 16:48:16 UTC 
Responsible Changed
From-To: freebsd-ports-bugs->miwi

I'll take it.
Comment 2 Martin Wilke freebsd_committer freebsd_triage 2007-11-05 08:58:37 UTC 
State Changed
From-To: open->closed

Committed. Thanks!