CVE-2020-14148

Опубликовано: 15 июн. 2020

Источник: debian

Описание

The Server-Server protocol implementation in ngIRCd before 26~rc2 allows an out-of-bounds access, as demonstrated by the IRC_NJOIN() function.

Пакет	Статус	Версия исправления	Релиз	Тип
ngircd	fixed	26-1		package
ngircd	postponed		buster	package
ngircd	no-dsa		stretch	package

https://github.com/ngircd/ngircd/issues/274
https://github.com/ngircd/ngircd/issues/277
https://github.com/ngircd/ngircd/pull/275
https://github.com/ngircd/ngircd/pull/276
https://github.com/ngircd/ngircd/commit/02cf31c0e267a4c9a7656d43ad3ad4eeb37fc9c5

CVE-2020-14148

CVSS3: 7.5

ubuntu

больше 5 лет назад

The Server-Server protocol implementation in ngIRCd before 26~rc2 allows an out-of-bounds access, as demonstrated by the IRC_NJOIN() function.

CVE-2020-14148

CVSS3: 7.5

nvd

больше 5 лет назад

The Server-Server protocol implementation in ngIRCd before 26~rc2 allows an out-of-bounds access, as demonstrated by the IRC_NJOIN() function.

GHSA-7cgh-8qx5-9mw4

CVSS3: 7.5

github

больше 3 лет назад

The Server-Server protocol implementation in ngIRCd before 26~rc2 allows an out-of-bounds access, as demonstrated by the IRC_NJOIN() function.