Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 526
Alerts This Week
Warning Icon 1 526

Fedora 23: Critical Security Advisory for Irssi - CVE-2016-7553 Revealed

fedora
Calendar Grey October 11, 2016
Dist Fedora Esm H88
The latest Irssi security patch resolves several vulnerabilities, notably a severe information leakage issue, with comprehensive upgrade instructions provided.
Security fix for CVE-2016-7553

Summary

Irssi is a modular IRC client with Perl scripting. Only text-mode

frontend is currently supported. The GTK/GNOME frontend is no longer

being maintained.

Update Information:

Security fix for CVE-2016-7553. ---- This is new version of irssi fixing security bugs, for details see upstream announcement: https://github.com/irssi/irssi/releases/tag/0.8.20

Change Log

References


[ 1 ] Bug #1379270 - CVE-2016-7553 irssi: Information disclosure in buf.pl https://bugzilla.redhat.com/show_bug.cgi?id=1379270 [ 2 ] Bug #1378343 - CVE-2016-7044 irssi: Unchecked input in unformat_24bit_color() can lead to crash https://bugzilla.redhat.com/show_bug.cgi?id=1378343 [ 3 ] Bug #1378344 - CVE-2016-7045 irssi: String length not validated in format_send_to_gui() causing crash https://bugzilla.redhat.com/show_bug.cgi?id=1378344

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update irssi' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: irssi
Product: Fedora 23
Version: 0.8.20
Release: 2.fc23
Summary: Modular text mode IRC client with Perl scripting

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.