Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2015-8547

Опубликовано: 08 янв. 2016
Источник: debian
EPSS Низкий

Описание

The CoreUserInputHandler::doMode function in core/coreuserinputhandler.cpp in Quassel 0.10.0 allows remote attackers to cause a denial of service (application crash) via the "/op *" command in a query.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
quasselfixed1:0.12.2-3package
quasselfixed1:0.10.0-2.3+deb8u2jessiepackage
quasselnot-affectedwheezypackage
quasselnot-affectedsqueezepackage

Примечания

  • https://github.com/quassel/quassel/commit/b8edbda019eeb99da8663193e224efc9d1265dc7

  • Support for oping a whole channel with /op * was only added in

  • https://github.com/quassel/quassel/commit/7ecbc1bf921880f7b03af779de7d9611853a0d46 (0.10-beta1)

  • https://www.openwall.com/lists/oss-security/2015/12/12/1

EPSS

Процентиль: 85%
0.02362
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2015-8547

CVSS3: 7.5
ubuntu
около 10 лет назад

The CoreUserInputHandler::doMode function in core/coreuserinputhandler.cpp in Quassel 0.10.0 allows remote attackers to cause a denial of service (application crash) via the "/op *" command in a query.

nvd логотип

CVE-2015-8547

CVSS3: 7.5
nvd
около 10 лет назад

The CoreUserInputHandler::doMode function in core/coreuserinputhandler.cpp in Quassel 0.10.0 allows remote attackers to cause a denial of service (application crash) via the "/op *" command in a query.

suse-cvrf логотип

openSUSE-SU-2015:2345-1

suse-cvrf
около 10 лет назад

Security update for quassel

github логотип

GHSA-3c22-99pq-qjv4

CVSS3: 7.5
github
больше 3 лет назад

The CoreUserInputHandler::doMode function in core/coreuserinputhandler.cpp in Quassel 0.10.0 allows remote attackers to cause a denial of service (application crash) via the "/op *" command in a query.

EPSS

Процентиль: 85%
0.02362
Низкий