Ubuntu
cgiirc package

CGIIRC in Dapper has a couple of unfixed buffer overflows

Bug #97603 reported by Andrew
256
Affects Status Importance Assigned to Milestone
cgiirc (Debian)
Fix Released
Unknown
cgiirc (Ubuntu)
Fix Released
Undecided
Unassigned
Dapper
Won't Fix
Undecided
Unassigned

Bug Description

Binary package hint: cgiirc

Looks like the latest version of cgiirc for dapper is: 0.5.4-6sarge1 which is vulnerable to a buffer overflow according to the developer and described in the CVE.

Feisty seems to have the latest and greatest version which has the vulnerability fixed.

See original description
Tags: patch

CVE References

Andrew (sloof)
description: updated
Revision history for this message
Andrew (sloof) wrote :

First patch. Be gentle.

Revision history for this message
William Grant (wgrant) wrote :

This only affects Dapper.

Changed in cgiirc:
status: Unconfirmed → Fix Released
status: Unconfirmed → Confirmed
Bug Watch Updater (bug-watch-updater)
Changed in cgiirc:
status: Unknown → Fix Released
Steve Beattie (sbeattie)
tags: added: patch
Revision history for this message
Jamie Strandboge (jdstrand) wrote :

Thank you for reporting this bug to Ubuntu. dapper has reached EOL
(End of Life) and is no longer supported. As a result, this bug
against dapper is being marked "Won't Fix". Please see
https://wiki.ubuntu.com/Releases for currently supported Ubuntu
releases.

Please feel free to report any other bugs you may find.

Changed in cgiirc (Ubuntu Dapper):
status: Confirmed → Won't Fix
To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.