FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

weechat -- multiple vulnerabilities

Affected packages
weechat < 1.7.1

Details

VuXML ID 81433129-2916-11e7-ad3e-00e04c1ea73d
Discovery 2017-04-23
Entry 2017-04-24

Common Vulnerabilities and Exposures:

WeeChat before 1.7.1 allows a remote crash by sending a filename via DCC to the IRC plugin. This occurs in the irc_ctcp_dcc_filename_without_quotes function during quote removal, with a buffer overflow.

References

CVE Name CVE-2017-8073
URL https://weechat.org/download/security/