[Weechat-dev] Security issue fixed in WeeChat

weechat-dev

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Weechat-dev] Security issue fixed in WeeChat

From:	FlashCode
Subject:	[Weechat-dev] Security issue fixed in WeeChat
Date:	Fri, 9 Nov 2012 22:32:43 +0100
User-agent:	Mutt/1.5.20 (2009-06-14)

Hi,

A buffer overflow in decoding of IRC colors in strings has been fixed.

Versions affected are 0.3.6 to 0.3.9 (and devel), problem is fixed in
new stable version 0.3.9.1 (and in devel).

Therefore, all users of a stable version are invited to upgrade to
version 0.3.9.1.
Users with devel version can update to latest devel, which contains
the fix.

If you can not upgrade now, it is recommended to disable IRC colors in
messages using following command:
  /set irc.network.colors_receive off

More info on WeeChat security page: http://weechat.org/security/

-- 
Cordialement / Best regards
Sébastien.

web: flashtux.org / weechat.org      mail: address@hidden
irc: FlashCode @ irc.freenode.net    xmpp: address@hidden

signature.asc
Description: Digital signature

[Prev in Thread]

Current Thread

[Next in Thread]

[Weechat-dev] Security issue fixed in WeeChat, FlashCode <=

Prev by Date: [Weechat-dev] [bug #37704] Crash or freeze when decoding IRC colors in strings
Next by Date: [Weechat-dev] [bug #37704] Crash or freeze when decoding IRC colors in strings
Previous by thread: [Weechat-dev] [bug #37704] Crash or freeze when decoding IRC colors in strings
Next by thread: [Weechat-dev] [task #5432] Allow to rename buffers (having the corresponding chan/nick/.. as a name)
Index(es):
- Date
- Thread