CVE-2018-5208

Priority
Medium
Description
In Irssi before 1.0.6, a calculation error in the completion code could
cause a heap buffer overflow when completing certain strings.
References
Bugs
Notes
 ratliff> GL#19, GL!27
Assigned-to
mdeslaur
Package
Source: irssi (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 LTS (Trusty Tahr):released (0.8.15-5ubuntu3.4)
Ubuntu 16.04 LTS (Xenial Xerus):released (0.8.19-1ubuntu1.6)
Ubuntu 17.10 (Artful Aardvark):released (1.0.4-1ubuntu2.2)
Ubuntu 18.04 LTS (Bionic Beaver):released (1.0.5-1ubuntu2)
Patches:
Upstream:https://github.com/irssi/irssi/commit/94f0cbe34a2089d00ba1bf61e9c2b28318f953b9
More Information

Updated: 2018-01-16 13:14:40 UTC (commit 14011)