[Bug 223169] irc/irssi: Update to 1.0.5 due to CVEs

bugzilla-noreply at freebsd.org bugzilla-noreply at freebsd.org
Sun Oct 22 15:11:54 UTC 2017 

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=223169

            Bug ID: 223169
           Summary: irc/irssi: Update to 1.0.5 due to CVEs
           Product: Ports & Packages
           Version: Latest
          Hardware: Any
                OS: Any
            Status: New
          Severity: Affects Many People
          Priority: ---
         Component: Individual Port(s)
          Assignee: freebsd-ports-bugs at FreeBSD.org
          Reporter: dor.bsd at xm0.uk

Created attachment 187370
  --> https://bugs.freebsd.org/bugzilla/attachment.cgi?id=187370&action=edit
Update to irssi 1.0.5

This fixes CVEs:
      - CVE-2017-15228
      - CVE-2017-15227
      - CVE-2017-15721
      - CVE-2017-15723
      - CVE-2017-15722

    (a) When installing themes with unterminated colour formatting
        sequences, Irssi may access data beyond the end of the
        string. (CWE-126) Found by Hanno Böck.

        CVE-2017-15228 was assigned to this issue.

    (b) While waiting for the channel synchronisation, Irssi may
        incorrectly fail to remove destroyed channels from the query list,
        resulting in use after free conditions when updating the state
        later on. Found by Joseph Bisch. (CWE-416 caused by CWE-672)

        CVE-2017-15227 was assigned to this issue.

    (c) Certain incorrectly formatted DCC CTCP messages could cause NULL
        pointer dereference. Found by Joseph Bisch. This is a separate,
        but similar issue to CVE-2017-9468. (CWE-690)

        CVE-2017-15721 was assigned to this issue.

    (d) Overlong nicks or targets may result in a NULL pointer dereference
        while splitting the message. Found by Joseph Bisch. (CWE-690)

        CVE-2017-15723 was assigned to this issue.

    (e) In certain cases Irssi may fail to verify that a Safe channel ID
        is long enough, causing reads beyond the end of the string. Found
        by Joseph Bisch. (CWE-126)

        CVE-2017-15722 was assigned to this issue.

    More information can be found in the upstream security advisory at
    https://irssi.org/security/irssi_sa_2017_10.txt

-- 
You are receiving this mail because:
You are the assignee for the bug.

More information about the freebsd-ports-bugs mailing list