|
Family: Debian Local Security Checks --> Category: infos
[DSA157] DSA-157-1 irssi-text Vulnerability Scan
Vulnerability Scan Summary DSA-157-1 irssi-text
Detailed Explanation for this Vulnerability Test
The IRC client irssi is vulnerable to a denial of service condition.
The problem occurs when a user attempts to join a channel that has an
overly long topic description. When a certain string is appended to
the topic, irssi will crash.
This problem has been fixed in version 0.8.4-3.1 for the current
stable distribution (woody) and in version 0.8.5-2 for the
unstable distribution (sid). The old stable distribution (potato) is
not affected, since the corresponding portions of code are not
present. The same applies to irssi-gnome and irssi-gtk, which don't
seem to be affected as well.
We recommend that you upgrade your irssi-text package.
Solution : http://www.debian.org/security/2002/dsa-157
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|