Mageia Bugzilla – Bug 8044
Fix a security problem of buffer overflow when decoding IRC colors in strings.
Last modified: 2012-11-17 17:25:38 CET
A buffer overflow is causing a crash or freeze of WeeChat (0.36 to 0.39) when decoding IRC colors in strings. The packages have been patched to fix this problem.
Is there a CVE for this Funda please?
No at the moment. See: http://www.weechat.org/security/
CVE requested on Saturday, should be a response here soon:
This is CVE-2012-5854.
Weechat is an irc client for the terminal
Connect to freenode
Not able to reproduce this and asking the devs on IRC got me nowhere so just checking the updated version seems to connect and join a channel.
Testing complete mga2 64
basic functionality tested on mga2 i586 (connect and join channel...).
A buffer overflow is causing a crash or freeze of WeeChat (0.36 to 0.39) when
decoding IRC colors in strings. The packages have been patched to fix this
Can sysadmin push packages to Updates? Thanks.
Don't forget to include the CVE reference in the advisory.
It is CVE-2012-5854.