CVE-2014-8483

EPSS 2.3%

konversation - security update

Published: 11/6/2014Modified: 4/28/2026

Description

The blowfishECB function in core/cipher.cpp in Quassel IRC 0.10.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a malformed string.

Affected packages (5)

Debian/konversationfrom 0, < 1.5-2
Debian/konversationfrom 0, < 1.3.1-2+deb6u1
Debian/konversationfrom 0, < 1.4-1+deb7u1
Debian/quasselfrom 0, < 0.10.0-2.1
Debian/quasselfrom 0, < 0.8.0-1+deb7u3

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-8483