Ubuntu
ngircd package

[CVE-2007-6062] Denial of service via JOIN command without channel

Bug #173164 reported by William Grant on 2007-12-01

256

Affects		Status	Importance	Assigned to	Milestone
	ngircd (Debian)	Fix Released	Unknown	debbugs #451875
	ngircd (Ubuntu)	Fix Released	Undecided	Unassigned
	Dapper	Invalid	Undecided	William Grant
	Edgy	Invalid	Undecided	William Grant
	Feisty	Fix Released	Undecided	William Grant
	Gutsy	Fix Released	Undecided	William Grant
	Hardy	Fix Released	Undecided	Unassigned

Bug Description

Binary package hint: ngircd

irc-channel.c in ngIRCd before 0.10.3 allows remote attackers to cause a denial of service (crash) via a JOIN command without a channel argument.

Hardy already has 0.10.3.

Related branches

lp:ubuntu/feisty-security/ngircd

lp:ubuntu/gutsy-security/ngircd

CVE References

2007-6062

William Grant (wgrant) on 2007-12-01

Changed in ngircd:
assignee:	nobody → fujitsu
status:	New → In Progress
assignee:	nobody → fujitsu
status:	New → In Progress
assignee:	nobody → fujitsu
status:	New → In Progress
assignee:	nobody → fujitsu
status:	New → In Progress
status:	New → Fix Released

Revision history for this message

William Grant (wgrant) wrote on 2007-12-01:

#1

Dapper and Edgy have extra checks that must have been removed in 0.10.0; they're not vulnerable.

Changed in ngircd:
status:	In Progress → Invalid
status:	In Progress → Invalid

Revision history for this message

William Grant (wgrant) wrote on 2007-12-01:

#2

feisty debdiff Edit (2.4 KiB, text/plain)

Revision history for this message

William Grant (wgrant) wrote on 2007-12-01:

#3

gutsy debdiff Edit (2.4 KiB, text/plain)

Revision history for this message

Kees Cook (kees) wrote on 2007-12-03:

#4

Thanks for preparing this! I've uploaded it to the security queue; it should be published shortly.

Changed in ngircd:
status:	In Progress → Fix Committed
status:	In Progress → Fix Committed

Revision history for this message

William Grant (wgrant) wrote on 2007-12-04:

#5

ngircd (0.10.0-3ubuntu0.7.10) gutsy-security; urgency=low

  * SECURITY UPDATE: Denial of service via crafted JOIN command. (LP: #173164)
  * debian/patches/05-CVE-2007-6062.dpatch: Check that there is at least one
    argument to the JOIN command.
  * References:
    CVE-2007-6062

-- William Grant <email address hidden> Sat, 01 Dec 2007 12:26:23 +1100

Revision history for this message

William Grant (wgrant) wrote on 2007-12-04:

#6

ngircd (0.10.0-3ubuntu0.7.04) feisty-security; urgency=low

  * SECURITY UPDATE: Denial of service via crafted JOIN command. (LP: #173164)
  * debian/patches/05-CVE-2007-6062.dpatch: Check that there is at least one
    argument to the JOIN command.
  * References:
    CVE-2007-6062

-- William Grant <email address hidden> Sat, 01 Dec 2007 12:12:51 +1100

Changed in ngircd:
status:	Fix Committed → Fix Released
status:	Fix Committed → Fix Released

Bug Watch Updater (bug-watch-updater) on 2007-12-04

Changed in ngircd:
status:	Unknown → New

Bug Watch Updater (bug-watch-updater) on 2008-01-06

Changed in ngircd:
status:	New → Fix Released

Report a bug

This report contains Public Security information

Everyone can see this security related information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Patches

Add patch

Remote bug watches

debbugs #451875
[done important patch security] Edit

Bug watches keep track of this bug in other bug trackers.