Note:
This project will be discontinued after December 13, 2021. [more]
2019-06-29
Irssi before 1.0.8, 1.1.x before 1.1.3, and 1.2.x before 1.2.1, when SASL is enabled, has a use after free when sending SASL login to the server.
Products | Irssi |
Type | Use After Free (CWE-416) |
First patch | - None (likely due to unavailable code) |
Links |
• http://www.openwall.com/lists/oss-security/2019/06/29/1
• https://github.com/irssi/irssi/commit/d23b0d22cc611e43c88d99192a59f413f951a955 • http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00004.html • http://packetstormsecurity.com/files/153480/Slackware-Security-Advisory-irssi-Updates.html • https://seclists.org/bugtraq/2019/Jun/41 |