Candidate: CVE-2017-15923
PublicDate: 2017-11-15 16:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15923
 https://cgit.kde.org/konversation.git/commit/?h=1.7&id=6a7f59ee1b9dbc6e5cf9e5f3b306504d02b73ef0
Description:
 Konversation 1.4.x, 1.5.x, 1.6.x, and 1.7.x before 1.7.3 allow remote
 attackers to cause a denial of service (crash) via vectors related to
 parsing of IRC color formatting codes.
Ubuntu-Description:
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=881586
 https://bugs.launchpad.net/ubuntu/+source/konversation/+bug/1731797
Priority: low
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H [7.5 HIGH]


Patches_konversation:
upstream_konversation: released (1.7.3-1)
precise/esm_konversation: DNE
trusty_konversation: released (1.5-1ubuntu1.14.04.2)
trusty/esm_konversation: DNE (trusty was released [1.5-1ubuntu1.14.04.2])
xenial_konversation: released (1.6-0ubuntu1.1)
zesty_konversation: released (1.6.2-0ubuntu1.1)
artful_konversation: released (1.7.2-1ubuntu1.1)
devel_konversation: not-affected (1.7.3-1ubuntu1)