-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Thu, 21 Dec 2017 19:39:37 +0100 Source: irssi Binary: irssi irssi-dev Architecture: source amd64 Version: 0.8.15-5+deb7u4 Distribution: wheezy-security Urgency: medium Maintainer: Gerfried Fuchs <rhonda@debian.org> Changed-By: Emilio Pozuelo Monfort <pochu@debian.org> Description: irssi - terminal based IRC client irssi-dev - terminal based IRC client - development files Closes: 879521 Changes: irssi (0.8.15-5+deb7u4) wheezy-security; urgency=medium . * Non-maintainer upload by the Debian LTS team. * IRSSI-SA-2017-10: - CVE-2017-15228: Unterminated colour formatting sequences may cause data access beyond the end of the buffer. - CVE-2017-15227: Failure to remove destroyed channels from the query list while waiting for the channel synchronisation may result in use after free conditions when updating the state later on. - CVE-2017-15721: Certain incorrectly formatted DCC CTCP messages could cause NULL pointer dereference. - CVE-2017-15722: Read beyond end of buffer may occur if a Safe channel ID is not long enough. (Closes: #879521) * IRSSI-SA-2017-01: - CVE-2017-5193: NULL pointer dereference in the nickcmp function - CVE-2017-5194: Use-after-freee when receiving invalid nick message - CVE-2017-5196: Out-of-bounds read when Printing the value %[ Checksums-Sha1: 854f35608ed563cc811ac1f451d738cb03a8cd4d 1915 irssi_0.8.15-5+deb7u4.dsc b7cdcbd0399fac6e1dd14d5604c435a3d2e3eb18 1298691 irssi_0.8.15.orig.tar.gz 03827b5beac8a7ca072f2cad1f66bc4cbe5e64ab 23582 irssi_0.8.15-5+deb7u4.diff.gz c4e0e0236ffe683d01d7cb0fb12359ea25f9d6e4 1158024 irssi_0.8.15-5+deb7u4_amd64.deb 6ca6a6b782d9cc29e20af7c48eadd65bbcac33fa 296624 irssi-dev_0.8.15-5+deb7u4_amd64.deb Checksums-Sha256: b64c304bcb5796faefe1d5ab390b78ed11a3dc451b981e5a9c2bd6e5dc59ab5b 1915 irssi_0.8.15-5+deb7u4.dsc c15957cd898cc71eeae389b5a71055693b95794667e637da3327553661e4c6de 1298691 irssi_0.8.15.orig.tar.gz 6c56b30c37e284ab454ff6370a58adc5f4bfdc0dcbdfb2279fb2d55af962a792 23582 irssi_0.8.15-5+deb7u4.diff.gz 90bbf4076d2a47aae8fcb3219a20ef136107a2569dd6cbefd8a8b16dc892b10d 1158024 irssi_0.8.15-5+deb7u4_amd64.deb 837496415411635110dfa53992f1a2c7dcf272c317a33409297e61ba00d22d60 296624 irssi-dev_0.8.15-5+deb7u4_amd64.deb Files: 04e8c74b1f61e5356bda5b7c7dac4e6f 1915 net optional irssi_0.8.15-5+deb7u4.dsc 870db8e319f640c2bf446c30d0c24ef6 1298691 net optional irssi_0.8.15.orig.tar.gz 1c6119596fbeb28a2af9ae14d5dabd29 23582 net optional irssi_0.8.15-5+deb7u4.diff.gz 0beeb6e29b9dda2d8f069faf736fe217 1158024 net optional irssi_0.8.15-5+deb7u4_amd64.deb 1464d229319af711a44d6b8148bdcc40 296624 net optional irssi-dev_0.8.15-5+deb7u4_amd64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEcJymx+vmJZxd92Q+nUbEiOQ2gwIFAlo8BSoACgkQnUbEiOQ2 gwLueA//dCMP+MpiSCIB4TOfjdKcYESs/WHlpmTv675c1zY8umrtoEmmnF1rdfmA PL7D+//k0MFpKn4BCexAaFIAjnTnmDciHwb4HYNileOPcpXCaitlfKEPodT5nxLt qpIblI1FulD8/fDoZjlW+fiZH3kbxX+R4MrarTaABwstR3Ipv6ljzmTF7aFEZrMp CMs/13uLkcVT0iVM1o20ynQlc7+Ik8/ZnxU3jHsx8oRefvAXkoj9APGUSj+ypx8r 1D8Qj3EdUqRRl9bIt/HzuqmNJZVdHrjaDlTZpkfA8GCtfBxUvZ4NnuDqyE9HgCoE BoPfgRcK1OtASe9zFWpznbQm/NACmq/mKWaopJH5DBu7YVTxzSLAOC45IGrQ7EF9 /pWyG1m/D1J0oEZVTi19qrdcIeBodteL95hKtEALSyJSBw4uJnl+2k0vfqEIx1As 07BD/8MN17fqYWVZUPvB+w0BHASLafXp7lY0dXLUJcZpB6eWwr+Toblk/GUOG61o f/GFskD40rLmDhJ4ytbPVr9MKJFWSwY/WLnLprdwvWh8IgsgHVQkqGj966DZJuzj Ldp4mtE85JOzaEDTe0MYIjg07WlEDzUNo2K56gzg6lXFQAiqtVzs3CdSfmzsO7oJ 3HMK6/tzYCWrXlnaLVDmnLNuGYYQf/3YyUACJpx/if9smBWuvAk= =kf6U -----END PGP SIGNATURE-----
