Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:27002
HistorySep 13, 2011 - 12:00 a.m.

[USN-1200-1] Quassel vulnerability

2011-09-1300:00:00
vulners.com
17
JSON

==========================================================================
Ubuntu Security Notice USN-1200-1
September 10, 2011

quassel vulnerability

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 11.04
  • Ubuntu 10.10
  • Ubuntu 10.04 LTS

Summary:

A remote attacker could send crafted input to Quassel and cause it to
crash.

Software Description:

  • quassel: KDE/Qt-based IRC client

Details:

It was discovered that Quassel did not properly handle CTCP requests. A
remote attacker could exploit this to cause a denial of service via
application crash.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 11.04:
quassel-core 0.7.2-0ubuntu2.2

Ubuntu 10.10:
quassel-core 0.7.1-0ubuntu1.1

Ubuntu 10.04 LTS:
quassel-core 0.6.1-0ubuntu1.2

After a standard system update you need to restart Quassel to make all the
necessary changes.

References:
http://www.ubuntu.com/usn/usn-1200-1
https://launchpad.net/bugs/845707

Package Information:
https://launchpad.net/ubuntu/+source/quassel/0.7.2-0ubuntu2.2
https://launchpad.net/ubuntu/+source/quassel/0.7.1-0ubuntu1.1
https://launchpad.net/ubuntu/+source/quassel/0.6.1-0ubuntu1.2

JSON