Test Kennung:	1.3.6.1.4.1.25623.1.1.10.2020.0153
Kategorie:	Mageia Linux Local Security Checks
Titel:	Mageia: Security Advisory (MGASA-2020-0153)
Zusammenfassung:	The remote host is missing an update for the 'weechat' package(s) announced via the MGASA-2020-0153 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'weechat' package(s) announced via the MGASA-2020-0153 advisory. Vulnerability Insight: Updated weechat packages fix security vulnerabilities: An issue was discovered in WeeChat before 2.7.1 (0.4.0 to 2.7 are affected). A malformed message 352 (who) can cause a NULL pointer dereference in the callback function, resulting in a crash (CVE-2020-9759). An issue was discovered in WeeChat before 2.7.1 (0.3.4 to 2.7 are affected). When a new IRC message 005 is received with longer nick prefixes, a buffer overflow and possibly a crash can happen when a new mode is set for a nick (CVE-2020-9760). Affected Software/OS: 'weechat' package(s) on Mageia 7. Solution: Please install the updated package(s). CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2020-9759 https://blog.recurity-labs.com/2021-02-03/webOS_Pt1.html https://lists.debian.org/debian-lts-announce/2021/09/msg00018.html Common Vulnerability Exposure (CVE) ID: CVE-2020-9760 https://security.gentoo.org/glsa/202003-51 https://github.com/weechat/weechat/commit/40ccacb4330a64802b1f1e28ed9a6b6d3ca9197f https://weechat.org/doc/security/ https://lists.debian.org/debian-lts-announce/2020/03/msg00031.html
Copyright	Copyright (C) 2022 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.