Bug 22609 - irssi new security issues CVE-2018-705[0-4]
Summary: irssi new security issues CVE-2018-705[0-4]
Status: RESOLVED FIXED
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: 6
Hardware: All Linux
Priority: Normal normal
Target Milestone: ---
Assignee: QA Team
QA Contact: Sec team
URL:
Whiteboard: MGA6-64-OK
Keywords: advisory, validated_update
Depends on:
Blocks:
 
Reported: 2018-02-16 20:32 CET by David Walser
Modified: 2018-02-23 18:15 CET (History)
5 users (show)

See Also:
Source RPM: irssi-1.1.0-1.mga7.src.rpm
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2018-02-16 20:32:57 CET 
Upstream has issued an advisory on February 15:
https://irssi.org/security/irssi_sa_2018_02.txt

The issues are fixed upstream in 1.0.7 and 1.1.1.

Mageia 5 and Mageia 6 are also affected.
David Walser 2018-02-16 20:33:04 CET

Whiteboard: (none) => MGA6TOO

David Walser 2018-02-16 21:09:14 CET

Status comment: (none) => Fixed upstream in 1.0.7 and 1.1.1

Comment 1 David Walser 2018-02-17 16:57:39 CET 
Updated packages uploaded by Jani.  Thanks Jani!

Advisory:
========================

Updated irssi packages fix security vulnerabilities:

Null pointer dereference when an "empty" nick has been observed by Irssi
(CVE-2018-7050).

Certain nick names could result in out of bounds access when printing theme
strings (CVE-2018-7051).

When the number of windows exceed the available space, Irssi would crash due to
Null pointer dereference (CVE-2018-7052).

Use after free when SASL messages are received in unexpected order
(CVE-2018-7053).

Use after free when server is disconnected during netsplits (CVE-2018-7054).

References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7050
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7051
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7052
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7053
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7054
https://irssi.org/security/irssi_sa_2018_02.txt
========================

Updated packages in core/updates_testing:
========================
irssi-1.0.7-1.mga6
irssi-devel-1.0.7-1.mga6
irssi-perl-1.0.7-1.mga6

from irssi-1.0.7-1.mga6.src.rpm

Whiteboard: MGA6TOO => (none)
Version: Cauldron => 6
Assignee: jani.valimaa => qa-bugs
Status comment: Fixed upstream in 1.0.7 and 1.1.1 => (none)
CC: (none) => jani.valimaa

Comment 2 Len Lawrence 2018-02-17 20:57:52 CET 
Mageia 6  :: x86_64

Use this habitually so there was a local config file available.
Invoked irssi on the command-line and joined #mageia-qa.  Nobody talking.  Placed a couple of messages then /part.
Explored some of the commands using the help system.
It all looks fine.

Whiteboard: (none) => MGA6-64-OK
CC: (none) => tarazed25

Len Lawrence 2018-02-22 01:38:02 CET

Keywords: (none) => validated_update
CC: (none) => sysadmin-bugs

Dave Hodgins 2018-02-22 19:59:05 CET

Keywords: (none) => advisory
CC: (none) => davidwhodgins

Comment 3 Thomas Backlund 2018-02-22 21:10:50 CET 
An update for this issue has been pushed to the Mageia Updates repository.

https://advisories.mageia.org/MGASA-2018-0132.html

Status: NEW => RESOLVED
Resolution: (none) => FIXED
CC: (none) => tmb

Comment 4 Mageia Robot 2018-02-23 18:15:29 CET 
An update for this issue has been pushed to the Mageia Updates repository.

https://advisories.mageia.org/MGASA-2018-0132.html
Note You need to log in before you can comment on or make changes to this bug.