* SECURITY UPDATE: remote buffer overflow crash by sending a filename
via DCC to the IRC plugin (LP: #1686478)
- debian/patches/03_fix_CVE-2017-8073.patch: Fix quote removal in
irc_ctcp_dcc_filename_without_quotes function in
src/plugins/irc/irc-ctcp.c. Patch from 1.7.1 via Debian.
- CVE-2017-8073
This bug was fixed in the package weechat - 1.7-2ubuntu0.1
---------------
weechat (1.7-2ubuntu0.1) zesty-security; urgency=medium
* SECURITY UPDATE: remote buffer overflow crash by sending a filename patches/ 03_fix_ CVE-2017- 8073.patch: Fix quote removal in ctcp_dcc_ filename_ without_ quotes function in plugins/ irc/irc- ctcp.c. Patch from 1.7.1 via Debian.
via DCC to the IRC plugin (LP: #1686478)
- debian/
irc_
src/
- CVE-2017-8073
-- Jeremy Bicha <email address hidden> Wed, 26 Apr 2017 14:10:49 -0400