Описание
An issue was discovered in WeeChat before 2.7.1 (0.4.0 to 2.7 are affected). A malformed message 352 (who) can cause a NULL pointer dereference in the callback function, resulting in a crash.
An issue was discovered in WeeChat before 2.7.1 (0.4.0 to 2.7 are affected). A malformed message 352 (who) can cause a NULL pointer dereference in the callback function, resulting in a crash.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2020-9759
- https://github.com/weechat/weechat/commit/9904cb6d2eb40f679d8ff6557c22d53a3e3dc75a
- https://blog.recurity-labs.com/2021-02-03/webOS_Pt1.html
- https://lists.debian.org/debian-lts-announce/2020/03/msg00031.html
- https://lists.debian.org/debian-lts-announce/2021/09/msg00018.html
- https://security.gentoo.org/glsa/202003-51
- https://weechat.org/doc/security
Связанные уязвимости
A Vulnerability of LG Electronic web OS TV Emulator could allow an attacker to escalate privileges and overwrite certain files. This vulnerability is due to wrong environment setting. An attacker could exploit this vulnerability through crafted configuration files and executable files.
A Vulnerability of LG Electronic web OS TV Emulator could allow an attacker to escalate privileges and overwrite certain files. This vulnerability is due to wrong environment setting. An attacker could exploit this vulnerability through crafted configuration files and executable files.
A Vulnerability of LG Electronic web OS TV Emulator could allow an att ...