A security issue has been fixed in irssi 1.2.2: https://www.openwall.com/lists/oss-security/2019/08/29/3 Mageia 7 is also affected.
Status comment: (none) => Fixed upstream in 1.2.2Whiteboard: (none) => MGA7TOO
Updated package uploaded by Jani. Advisory: ======================== Updated irssi packages fix security vulnerability: Irssi 1.2.x before 1.2.2 has a use-after-free if the IRC server sends a double CAP (CVE-2019-15717). References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15717 https://www.openwall.com/lists/oss-security/2019/08/29/3 ======================== Updated packages in core/updates_testing: ======================== irssi-1.2.2-1.mga7 irssi-devel-1.2.2-1.mga7 irssi-perl-1.2.2-1.mga7 irssi-otr-1.2.2-1.mga7 from irssi-1.2.2-1.mga7.src.rpm
Assignee: jani.valimaa => qa-bugsCC: (none) => jani.valimaaWhiteboard: MGA7TOO => (none)Version: Cauldron => 7
MGA7-64 gnome 14:21 -!- ___ _ 14:21 -!- |_ _|_ _ _____(_) 14:21 -!- | || '_(_-<_-< | 14:21 -!- |___|_| /__/__/_| 14:21 -!- Irssi v1.2.2 - https://irssi.org Participated in the QA meeting and it worked.
Whiteboard: (none) => MGA7-64-OKCC: (none) => brtians1
Good enough for me, Brian. Validating. Advisory in Comment 1.
Keywords: (none) => validated_updateCC: (none) => andrewsfarm, sysadmin-bugs
CC: (none) => tmbKeywords: (none) => advisory
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2019-0255.html
Status: NEW => RESOLVEDResolution: (none) => FIXED