Bug 26400

Summary: weechat new security issues CVE-2020-9759 and CVE-2020-9760
Product: Mageia Reporter: David Walser <luigiwalser>
Component: SecurityAssignee: QA Team <qa-bugs>
Status: RESOLVED FIXED QA Contact: Sec team <security>
Severity: critical    
Priority: Normal CC: andrewsfarm, herman.viaene, sysadmin-bugs, tmb
Version: 7Keywords: advisory, validated_update
Target Milestone: ---   
Hardware: All   
OS: Linux   
Whiteboard: MGA7-64-OK
Source RPM: weechat-2.4-2.1.mga7.src.rpm CVE:
Status comment: Fixed upstream in 2.7.1

Description David Walser 2020-03-31 22:26:18 CEST 
Debian-LTS has issued an advisory on March 24:
https://www.debian.org/lts/security/2020/dla-2157

The issues are fixed upstream in 2.7.1.
David Walser 2020-03-31 22:26:38 CEST

Status comment: (none) => Fixed upstream in 2.7.1

Comment 1 Stig-Ørjan Smelror 2020-04-01 00:37:59 CEST 
Advisory
========

Weechat has been updated to fix 2 security issues.

CVE-2020-9759: An issue was discovered in WeeChat before 2.7.1 (0.4.0 to 2.7 are affected). A malformed message 352 (who) can cause a NULL pointer dereference in the callback function, resulting in a crash.

CVE-2020-9760: An issue was discovered in WeeChat before 2.7.1 (0.3.4 to 2.7 are affected). When a new IRC message 005 is received with longer nick prefixes, a buffer overflow and possibly a crash can happen when a new mode is set for a nick.

References
==========

https://www.debian.org/lts/security/2020/dla-2157
https://nvd.nist.gov/vuln/detail/CVE-2020-9759
https://nvd.nist.gov/vuln/detail/CVE-2020-9760

Files
=====

Uploaded to core/updates_testing
weechat-2.7.1-1.mga7
weechat-aspell-2.7.1-1.mga7
weechat-charset-2.7.1-1.mga7
weechat-devel-2.7.1-1.mga7
weechat-guile-2.7.1-1.mga7
weechat-lua-2.7.1-1.mga7
weechat-perl-2.7.1-1.mga7
weechat-python-2.7.1-1.mga7
weechat-ruby-2.7.1-1.mga7
weechat-tcl-2.7.1-1.mga7

from weechat-2.7.1-1.mga7.src.rpm

Assignee: smelror => qa-bugs

Comment 2 Herman Viaene 2020-04-02 11:31:24 CEST 
MGA7-64 Plasma on Lenovo B50
No installation issues.
Ref to bug 26267 for testing.
I could connect to #mageia-qa, and post, but apparently no one there to answer.
So OK AFAICS.

CC: (none) => herman.viaene
Whiteboard: (none) => MGA7-64-OK

Comment 3 Thomas Andrews 2020-04-02 17:13:09 CEST 
Validating. Advisory in Comment 1.

Keywords: (none) => validated_update
CC: (none) => andrewsfarm, sysadmin-bugs

Thomas Backlund 2020-04-03 00:11:00 CEST

Keywords: (none) => advisory
CC: (none) => tmb

Comment 4 Mageia Robot 2020-04-03 00:49:57 CEST 
An update for this issue has been pushed to the Mageia Updates repository.

https://advisories.mageia.org/MGASA-2020-0153.html

Status: NEW => RESOLVED
Resolution: (none) => FIXED