Описание
The (1) Conn_GetCipherInfo and (2) Conn_UsesSSL functions in src/ngircd/conn.c in ngIRCd 13 and 14, when SSL/TLS support is present and standalone mode is disabled, allow remote attackers to cause a denial of service (application crash) by sending the MOTD command from another server in the same IRC network, possibly related to an array index error.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | 21-1 |
| cosmic | not-affected | 21-1 |
| dapper | ignored | end of life |
| devel | not-affected | 21-1 |
| esm-apps/bionic | not-affected | 21-1 |
| esm-apps/xenial | not-affected | 21-1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected [21-1]] |
| hardy | ignored | end of life |
| intrepid | ignored | end of life |
Показывать по
Ссылки на источники
EPSS
2.6 Low
CVSS2
Связанные уязвимости
The (1) Conn_GetCipherInfo and (2) Conn_UsesSSL functions in src/ngircd/conn.c in ngIRCd 13 and 14, when SSL/TLS support is present and standalone mode is disabled, allow remote attackers to cause a denial of service (application crash) by sending the MOTD command from another server in the same IRC network, possibly related to an array index error.
The (1) Conn_GetCipherInfo and (2) Conn_UsesSSL functions in src/ngirc ...
The (1) Conn_GetCipherInfo and (2) Conn_UsesSSL functions in src/ngircd/conn.c in ngIRCd 13 and 14, when SSL/TLS support is present and standalone mode is disabled, allow remote attackers to cause a denial of service (application crash) by sending the MOTD command from another server in the same IRC network, possibly related to an array index error.
EPSS
2.6 Low
CVSS2