You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa irssi

Sigurnosni nedostaci programskog paketa irssi

by - 0

==========================================================================
Ubuntu Security Notice USN-4046-1
July 04, 2019

irssi vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 19.04
– Ubuntu 18.10
– Ubuntu 18.04 LTS
– Ubuntu 16.04 LTS

Summary:

Several security issues were fixed in Irssi.

Software Description:
– irssi: terminal based IRC client

Details:

It was discovered that Irssi incorrectly handled certain disconnections.
An attacker could possibly use this issue to cause a denial of service
or execute arbitrary code. This issue only affected Ubuntu 18.04 LTS.
(CVE-2018-7054)

It was discovered that Irssi incorrectly handled certain requests.
An attacker could possibly use this issue to cause a denial of service
or execute arbitrary code. (CVE-2019-13045)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 19.04:
irssi 1.2.0-2ubuntu1.1

Ubuntu 18.10:
irssi 1.1.1-1ubuntu1.2

Ubuntu 18.04 LTS:
irssi 1.0.5-1ubuntu4.2

Ubuntu 16.04 LTS:
irssi 0.8.19-1ubuntu1.9

After a standard system update you need to restart Irssi to make all the necessary changes.

References:
https://usn.ubuntu.com/4046-1
CVE-2018-7054, CVE-2019-13045

Package Information:
https://launchpad.net/ubuntu/+source/irssi/1.2.0-2ubuntu1.1
https://launchpad.net/ubuntu/+source/irssi/1.1.1-1ubuntu1.2
https://launchpad.net/ubuntu/+source/irssi/1.0.5-1ubuntu4.2
https://launchpad.net/ubuntu/+source/irssi/0.8.19-1ubuntu1.9
—–BEGIN PGP SIGNATURE—–
Version: GnuPG v1
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=nyLb
—–END PGP SIGNATURE—–

Top
More in Preporuke
Ranjivost Cisco Nexus 9000 serije preklopnika

Otkrivena je ranjivost u u ACI (Application Centric Infrastructure) Mode Switch softveru kod Cisco Nexus 9000 Serije preklopnika. Ranjivost je...

Close