Bug 1043052 – VUL-0: CVE-2017-9469: irssi: dcc crashwith incorrect quoting

Bug 1043052 - (CVE-2017-9469) VUL-0: CVE-2017-9469: irssi: dcc crashwith incorrect quoting

(CVE-2017-9469)
Summary:	VUL-0: CVE-2017-9469: irssi: dcc crashwith incorrect quoting

Status:	RESOLVED FIXED

Classification:	Novell Products
Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Incidents
Version:	unspecified
Hardware:	Other openSUSE 42.2

Priority:	P3 - Medium Severity: Normal
Target Milestone:	---
Assigned To:	Security Team bot
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/186377/
Whiteboard:
Keywords:

Depends on:
Blocks:
	Show dependency tree / graph

Create test case

Clone This Bug

Reported:	2017-06-07 06:30 UTC by Andreas Stieger
Modified:	2017-06-08 16:25 UTC (History)
CC List:	3 users (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Andreas Stieger 2017-06-07 06:30:26 UTC

In Irssi before 1.0.3, when receiving certain incorrectly quoted DCC
files, it tries to find the terminating quote one byte before the
allocated memory. Thus, remote attackers might be able to cause a
crash.

Advisory:
https://irssi.org/security/irssi_sa_2017_06.txt
Patch:
https://github.com/irssi/irssi/commit/fb08fc7f1aa6b2e616413d003bf021612301ad55


References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-9469
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9469

Comment 1 Andreas Stieger 2017-06-07 06:31:26 UTC

Already submitted in https://build.opensuse.org/request/show/501555
but could you please add references to the CVEs and bugzilla?

Comment 2 Andreas Stieger 2017-06-07 07:25:01 UTC

update running

Comment 3 Johannes Segitz 2017-06-07 07:34:20 UTC

We currently have no maintainer here. You created the last update. Would you be willing to handle this issue?

Comment 4 Andreas Stieger 2017-06-07 09:03:30 UTC

No further action required, thanks!

Comment 5 Andreas Stieger 2017-06-08 11:11:45 UTC

release

Comment 6 Swamp Workflow Management 2017-06-08 16:09:58 UTC

openSUSE-SU-2017:1505-1: An update that fixes two vulnerabilities is now available.

Category: security (moderate)
Bug References: 1043051,1043052
CVE References: CVE-2017-9468,CVE-2017-9469
Sources used:
openSUSE Leap 42.2 (src):    irssi-1.0.3-14.7.1

Comment 7 Swamp Workflow Management 2017-06-08 16:25:51 UTC

openSUSE-SU-2017:1515-1: An update that fixes two vulnerabilities is now available.

Category: security (moderate)
Bug References: 1043051,1043052
CVE References: CVE-2017-9468,CVE-2017-9469
Sources used:
SUSE Package Hub for SUSE Linux Enterprise 12 (src):    irssi-1.0.3-25.1