pkg:Debian/irssi

All known vulnerabilities

• CRITICAL9.8CVE-2019-15717Irssi 1.2.x before 1.2.2 has a use-after-free if the IRC server sends a double CAP.
  from 0, < 1.2.2-1
• CRITICAL9.8CVE-2019-5882Irssi 1.1.x before 1.1.2 has a use after free when hidden lines are expired from the scroll buffer.
  from 0, < 1.1.2-1
• CRITICAL9.8CVE-2018-7054An issue was discovered in Irssi before 1.0.7 and 1.1.x before 1.1.1.
  from 0, < 1.0.7-1
• CRITICAL9.8CVE-2018-7053An issue was discovered in Irssi before 1.0.7 and 1.1.x before 1.1.1.
  from 0, < 1.0.7-1
• CRITICAL9.8CVE-2018-5208In Irssi before 1.0.6, a calculation error in the completion code could cause a heap buffer overflow when completing certain strings.
  from 0, < 1.0.7-1
• CRITICAL9.8CVE-2018-5206When the channel topic is set without specifying a sender, Irssi before 1.0.6 may dereference a NULL pointer.
  from 0, < 1.0.7-1
• CRITICAL9.8CVE-2017-10966An issue was discovered in Irssi before 1.0.4.
  from 0, < 1.0.4-1
• CRITICAL9.8CVE-2017-10965irssi - security update
  from 0, < 0.8.15-5+deb7u3
• CRITICAL9.8CVE-2017-10965irssi - security update
  from 0, < 1.0.4-1
• CRITICAL9.8CVE-2017-7191The netjoin processing in Irssi 1.x before 1.0.2 allows attackers to cause a denial of service (use-after-free) and possibly execute arbitr…
  from 0, < 1.0.2-1
• HIGH8.1CVE-2019-13045irssi - security update
  from 0, < 1.0.7-1~deb9u2
• HIGH8.1CVE-2019-13045irssi - security update
  from 0, < 1.2.1-1
• HIGH7.5CVE-2018-7052An issue was discovered in Irssi before 1.0.7 and 1.1.x before 1.1.1.
  from 0, < 1.0.7-1
• HIGH7.5CVE-2018-7051irssi - security update
  from 0, < 1.0.7-1
• HIGH7.5CVE-2018-7051irssi - security update
  from 0, < 0.8.15-5+deb7u6
• HIGH7.5CVE-2018-7050irssi - security update
  from 0, < 0.8.15-5+deb7u5
• HIGH7.5CVE-2018-7050irssi - security update
  from 0, < 1.0.7-1
• HIGH7.5CVE-2018-5207When using an incomplete variable argument, Irssi before 1.0.6 may access data beyond the end of the string.
  from 0, < 1.0.7-1
• HIGH7.5CVE-2018-5205irssi - security update
  from 0, < 1.0.7-1
• HIGH7.5CVE-2018-5205irssi - security update
  from 0, < 1.0.7-1~deb9u1
• HIGH7.5CVE-2017-15723In Irssi before 1.0.5, overlong nicks or targets may result in a NULL pointer dereference while splitting the message.
  from 0, < 1.0.5-1
• HIGH7.5CVE-2017-15721In Irssi before 1.0.5, certain incorrectly formatted DCC CTCP messages could cause a NULL pointer dereference.
  from 0, < 1.0.5-1
• HIGH7.5CVE-2017-15228Irssi before 1.0.5, when installing themes with unterminated colour formatting sequences, may access data beyond the end of the string.
  from 0, < 1.0.5-1
• HIGH7.5CVE-2017-15227irssi - security update
  from 0, < 0.8.15-5+deb7u4
• HIGH7.5CVE-2017-15227irssi - security update
  from 0, < 0.8.17-1+deb8u5
• HIGH7.5CVE-2017-15227irssi - security update
  from 0, < 1.0.5-1
• HIGH7.5CVE-2017-9469In Irssi before 1.0.3, when receiving certain incorrectly quoted DCC files, it tries to find the terminating quote one byte before the allo…
  from 0, < 1.0.3-1
• HIGH7.5CVE-2017-9468irssi - security update
  from 0, < 1.0.3-1
• HIGH7.5CVE-2017-9468irssi - security update
  from 0, < 0.8.15-5+deb7u2
• HIGH7.5CVE-2017-9468irssi - security update
  from 0, < 0.8.17-1+deb8u4
• HIGH7.5CVE-2017-5356Irssi before 0.8.21 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a string containing a formattin…
  from 0, < 0.8.21-1
• HIGH7.5CVE-2017-5196Irssi 0.8.18 before 0.8.21 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via vectors involving string…
  from 0, < 0.8.21-1
• HIGH7.5CVE-2017-5195Irssi 0.8.17 before 0.8.21 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted ANSI x8 color…
  from 0, < 0.8.21-1
• HIGH7.5CVE-2017-5194Use-after-free vulnerability in Irssi before 0.8.21 allows remote attackers to cause a denial of service (crash) via an invalid nick messag…
  from 0, < 0.8.21-1
• HIGH7.5CVE-2017-5193The nickcmp function in Irssi before 0.8.21 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a…
  from 0, < 0.8.21-1
• HIGH7.5CVE-2016-7045The format_send_to_gui function in the format parsing code in Irssi before 0.8.20 allows remote attackers to cause a denial of service (hea…
  from 0, < 0.8.20-1
• HIGH7.5CVE-2016-7044irssi - security update
  from 0, < 0.8.17-1+deb8u1
• HIGH7.5CVE-2016-7044irssi - security update
  from 0, < 0.8.20-1
• MEDIUM5.9CVE-2017-15722In certain cases, Irssi before 1.0.5 may fail to verify that a Safe channel ID is long enough, causing reads beyond the end of the string.
  from 0, < 1.0.5-1
• MEDIUM5.3CVE-2023-29132Irssi 1.3.x and 1.4.x before 1.4.4 has a use-after-free because of use of a stale special collector reference.
  from 0, < 1.4.3-2
• LOW3.3CVE-2016-7553irssi - security update
  from 0, < 0.8.20-2
• LOW3.3CVE-2016-7553irssi - security update
  from 0, < 0.8.15-5+deb7u1
• —CVE-2010-1156core/nicklist.c in Irssi before 0.8.15 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash…
  from 0, < 0.8.15-1
• —CVE-2010-1155Irssi before 0.8.15, when SSL is used, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) fie…
  from 0, < 0.8.15-1
• —CVE-2009-1959Off-by-one error in the event_wallops function in fe-common/irc/fe-events.c in irssi 0.8.13 allows remote IRC servers to cause a denial of…
  from 0, < 0.8.13-2