Download
| Alert*
oval:org.secpod.oval:def:1900133
A NULL Pointer Dereference of CWE-476 exists in quassel version 0.12.4 in the quasselcore void CoreAuthHandler::handle coreauthhandler.cpp line 235 that allows an attacker to cause a denial of service. oval:org.secpod.oval:def:53316 Two vulnerabilities were found in the Quassel IRC client, which could result in the execution of arbitrary code or denial of service. Note that you need to restart the "quasselcore" service after upgrading the Quassel packages. oval:org.secpod.oval:def:1800982 CVE-2018-1000178: A heap corruption of type CWE-120 exists in quassel version 0.12.4 in quasselcore in void DataStreamPeer::processMessage datastreampeer.cpp line 62 that allows an attacker to execute code remotely. oval:org.secpod.oval:def:67186 quassel: distributed IRC client - monolithic core+client Quassel could be made to crash or run programs if it received specially crafted network traffic. oval:org.secpod.oval:def:705705 quassel: distributed IRC client - monolithic core+client Quassel could be made to crash or run programs if it received specially crafted network traffic. oval:org.secpod.oval:def:603385 Two vulnerabilities were found in the Quassel IRC client, which could result in the execution of arbitrary code or denial of service. Note that you need to restart the "quasselcore" service after upgrading the Quassel packages. |