CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2018-7050
https://notcve.org/view.php?id=CVE-2018-7050
An issue was discovered in Irssi before 1.0.7 and 1.1.x before 1.1.1. A NULL pointer dereference occurs for an "empty" nick. Se ha descubierto un problema en Irssi, en versiones anteriores a la 1.0.7 y versiones 1.1.x anteriores a la 1.1.1. Ocurre una desreferencia de puntero NULL en un nick "vacío". • http://openwall.com/lists/oss-security/2018/02/15/1 https://irssi.org/security/irssi_sa_2018_02.txt https://usn.ubuntu.com/3590-1 https://www.debian.org/security/2018/dsa-4162 • CWE-476: NULL Pointer Dereference •
CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0CVE-2018-7051
https://notcve.org/view.php?id=CVE-2018-7051
An issue was discovered in Irssi before 1.0.7 and 1.1.x before 1.1.1. Certain nick names could result in out-of-bounds access when printing theme strings. Se ha descubierto un problema en Irssi, en versiones anteriores a la 1.0.7 y versiones 1.1.x anteriores a la 1.1.1. Ciertos sobrenombres podrían resultar en un acceso fuera de límites al imprimir cadenas de tema. • http://openwall.com/lists/oss-security/2018/02/15/1 https://irssi.org/security/irssi_sa_2018_02.txt https://lists.debian.org/debian-lts-announce/2018/03/msg00021.html https://usn.ubuntu.com/3590-1 https://www.debian.org/security/2018/dsa-4162 • CWE-125: Out-of-bounds Read •
CVSS: 9.8EPSS: 0%CPEs: 6EXPL: 0CVE-2018-7053
https://notcve.org/view.php?id=CVE-2018-7053
An issue was discovered in Irssi before 1.0.7 and 1.1.x before 1.1.1. There is a use-after-free when SASL messages are received in an unexpected order. Se ha descubierto un problema en Irssi, en versiones anteriores a la 1.0.7 y versiones 1.1.x anteriores a la 1.1.1. Hay un uso de memoria previamente liberada cuando los mensajes SASL se reciben en un orden inesperado. • http://openwall.com/lists/oss-security/2018/02/15/1 https://irssi.org/security/irssi_sa_2018_02.txt https://usn.ubuntu.com/3590-1 https://www.debian.org/security/2018/dsa-4162 • CWE-416: Use After Free •
CVSS: 9.8EPSS: 0%CPEs: 6EXPL: 0CVE-2018-7054
https://notcve.org/view.php?id=CVE-2018-7054
An issue was discovered in Irssi before 1.0.7 and 1.1.x before 1.1.1. There is a use-after-free when a server is disconnected during netsplits. NOTE: this issue exists because of an incomplete fix for CVE-2017-7191. Se ha descubierto un problema en Irssi, en versiones anteriores a la 1.0.7 y versiones 1.1.x anteriores a la 1.1.1. Hay un uso de memoria previamente liberada cuando un servidor se desconecta durante los netsplits. • http://openwall.com/lists/oss-security/2018/02/15/1 https://irssi.org/security/irssi_sa_2018_02.txt https://usn.ubuntu.com/3590-1 https://usn.ubuntu.com/4046-1 https://www.debian.org/security/2018/dsa-4162 • CWE-416: Use After Free •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2018-5208
https://notcve.org/view.php?id=CVE-2018-5208
In Irssi before 1.0.6, a calculation error in the completion code could cause a heap buffer overflow when completing certain strings. En Irssi en versiones anteriores a la 1.0.6, un error de cálculo en el código de finalización podría provocar un desbordamiento de búfer basado en memoria dinámica (heap) cuando se completan determinadas cadenas. • https://irssi.org/security/irssi_sa_2018_01.txt https://www.debian.org/security/2018/dsa-4162 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •