USN-4046-1: Irssi vulnerabilities
4 July 2019
Several security issues were fixed in Irssi.
Releases
Packages
- irssi - terminal based IRC client
Details
It was discovered that Irssi incorrectly handled certain disconnections.
An attacker could possibly use this issue to cause a denial of service
or execute arbitrary code. This issue only affected Ubuntu 18.04 LTS.
(CVE-2018-7054)
It was discovered that Irssi incorrectly handled certain requests.
An attacker could possibly use this issue to cause a denial of service
or execute arbitrary code. (CVE-2019-13045)
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 19.04
Ubuntu 18.10
Ubuntu 18.04
Ubuntu 16.04
After a standard system update you need to restart Irssi to make all the necessary changes.
References
Related notices
- USN-3590-1: irssi, irssi-dev