DSA-3226-1 inspircd -- inspircdID: oval:org.secpod.oval:def:602048 | Date: (C)2015-04-17 (M)2021-09-12 |
Class: PATCH | Family: unix |
adam@anope.org discovered several problems in inspircd, an IRC daemon: - an incomplete patch for CVE-2012-1836 failed to adequately resolve the problem where maliciously crafted DNS requests could lead to remote code execution through a heap-based buffer overflow. - the incorrect processing of specific DNS packets could trigger an infinite loop, thus resulting in a denial of service.