From ${URL} : IRSSI-SA-2018-01 Irssi Security Advisory [1] ============================================ CVE-2018-5206, CVE-2018-5205, CVE-2018-5208, CVE-2018-5207 Description ----------- Multiple vulnerabilities have been located in Irssi. (a) When the channel topic is set without specifying a sender, Irssi may dereference NULL pointer. Found by Joseph Bisch. (CWE-476) CVE-2018-5206 was assigned to this issue. (b) When using incomplete escape codes, Irssi may access data beyond the end of the string. (CWE-126) Found by Joseph Bisch. CVE-2018-5205 was assigned to this issue. (c) A calculation error in the completion code could cause a heap buffer overflow when completing certain strings. (CWE-126) Found by Joseph Bisch. CVE-2018-5208 was assigned to this issue. (d) When using an incomplete variable argument, Irssi may access data beyond the end of the string. (CWE-126) Found by Joseph Bisch. CVE-2018-5207 was assigned to this issue. Impact ------ May affect the stability of Irssi. Affected versions ----------------- (a,b,c,d) All Irssi versions that we observed. Fixed in -------- Irssi 1.0.6 Recommended action ------------------ Upgrade to Irssi 1.0.6. Irssi 1.0.6 is a maintenance release in the 1.0 series, without any new features. After installing the updated packages, one can issue the /upgrade command to load the new binary. TLS connections will require /reconnect. Mitigating facts ---------------- (a) requires a broken ircd or control over the ircd (b,d) requires user to install malicious or broken files or enter affected commands Patch ----- https://github.com/irssi/irssi/releases/download/1.0.6/irssi-1.0.5_1.0. 6.diff @maintainer(s): after the bump, in case we need to stabilize the package, please let us know if it is ready for the stabilization or not.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=e03ef011d7411135e22c5b8ad163d3edeba52d47 commit e03ef011d7411135e22c5b8ad163d3edeba52d47 Author: Patrice Clement <monsieurp@gentoo.org> AuthorDate: 2018-01-06 17:56:07 +0000 Commit: Patrice Clement <monsieurp@gentoo.org> CommitDate: 2018-01-06 17:59:09 +0000 net-irc/irssi: version bump. Bug: https://bugs.gentoo.org/643704 Package-Manager: Portage-2.3.13, Repoman-2.3.3 net-irc/irssi/Manifest | 1 + net-irc/irssi/irssi-1.0.6.ebuild | 54 ++++++++++++++++++++++++++++++++++++++++ 2 files changed, 55 insertions(+)}
@maintainer, ready for stable?
@arches, please stabilize. maintainer concurs via irc.
amd64 stable
x86 stable
ppc/ppc64 stable
hppa stable
ia64 stable
GLSA vote: no
arm stable
Stable on alpha.
@maintainers, please clean the vulnerable versions.
