Oval Definition:oval:org.mitre.oval:def:12795
Revision Date:2014-06-23Version:20
Title:DSA-1744-1 weechat -- missing input sanitisation
Description:Sebastien Helleu discovered that an error in the handling of color codes in the weechat IRC client could cause an out-of-bounds read of an internal color array. This can be used by an attacker to crash user clients via a crafted PRIVMSG command. The weechat version in the oldstable distribution is not affected by this problem. For the stable distribution, this problem has been fixed in version 0.2.6-1+lenny1. For the testing distribution, this problem will be fixed soon. For the unstable distribution, this problem has been fixed in version 0.2.6.1-1. We recommend that you upgrade your weechat packages.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2009-0661
DSA-1744-1
Platform(s):Debian GNU/Linux 5.0
Product(s):weechat
Definition Synopsis
  • Debian GNU/Linux 5.0 is installed
  • AND Architecture section
  • Architecture independent section
  • Installed architecture is all
  • AND Packages section
  • weechat-common DPKG is earlier than 0.2.6-1+lenny1
  • OR weechat DPKG is earlier than 0.2.6-1+lenny1
  • OR weechat-plugins DPKG is earlier than 0.2.6-1+lenny1
  • OR weechat-curses DPKG is earlier than 0.2.6-1+lenny1
    • BACK