Test Kennung:	1.3.6.1.4.1.25623.1.1.2.2017.1284
Kategorie:	Huawei EulerOS Local Security Checks
Titel:	Huawei EulerOS: Security Advisory for irssi (EulerOS-SA-2017-1284)
Zusammenfassung:	The remote host is missing an update for the Huawei EulerOS 'irssi' package(s) announced via the EulerOS-SA-2017-1284 advisory.
Beschreibung:	Summary: The remote host is missing an update for the Huawei EulerOS 'irssi' package(s) announced via the EulerOS-SA-2017-1284 advisory. Vulnerability Insight: Irssi before 1.0.5, when installing themes with unterminated colour formatting sequences, may access data beyond the end of the string.(CVE-2017-15228) Irssi before 1.0.5, while waiting for the channel synchronisation, may incorrectly fail to remove destroyed channels from the query list, resulting in use-after-free conditions when updating the state later on.(CVE-2017-15227) In Irssi before 1.0.5, certain incorrectly formatted DCC CTCP messages could cause a NULL pointer dereference. This is a separate, but similar, issue relative to CVE-2017-9468.(CVE-2017-15721) In certain cases, Irssi before 1.0.5 may fail to verify that a Safe channel ID is long enough, causing reads beyond the end of the string.(CVE-2017-15722) Affected Software/OS: 'irssi' package(s) on Huawei EulerOS V2.0SP2. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2017-15227 Common Vulnerability Exposure (CVE) ID: CVE-2017-15228 Common Vulnerability Exposure (CVE) ID: CVE-2017-15721 Common Vulnerability Exposure (CVE) ID: CVE-2017-15722
Copyright	Copyright (C) 2020 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.