Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Fri, 6 Jan 2017 03:16:14 -0500
From: <cve-assign@...re.org>
To: <ailin.nemui@...il.com>
CC: <cve-assign@...re.org>, <oss-security@...ts.openwall.com>
Subject: Re: CVE Request: Irssi Multiple Vulnerabilities (2017/01)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

> (a) A NULL pointer dereference in the nickcmp function found by Joseph
>     Bisch. (CWE-690)

Use CVE-2017-5193.


> (b) Use after free when receiving invalid nick message (Issue #466, CWE-146)

Use CVE-2017-5194.


> (c) Out of bounds read in certain incomplete control codes found by
>     Joseph Bisch. (CWE-126)

Use CVE-2017-5195.


> (d) Out of bounds read in certain incomplete character sequences found
>     by Hanno Boeck and independently by J. Bisch. (CWE-126)

Use CVE-2017-5196.

- -- 
CVE Assignment Team
M/S M300, 202 Burlington Road, Bedford, MA 01730 USA
[ A PGP key is available for encrypted communications at
  http://cve.mitre.org/cve/request_id.html ]
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=udlU
-----END PGP SIGNATURE-----

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ