https://bugzilla.novell.com/show_bug.cgi?id=789146 https://bugzilla.novell.com/show_bug.cgi?id=789146#c0 Summary: heap-based buffer overflow in Weechat < 0.3.9.1 Classification: openSUSE Product: openSUSE Factory Version: 12.3 Milestone 0 Platform: Other OS/Version: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security AssignedTo: security-team@suse.de ReportedBy: gber@opensuse.org QAContact: qa-bugs@suse.de Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:16.0) Gecko/20100101 Firefox/16.0
From oss-security (366075028.29966683.1352550547046.JavaMail.root@redhat.com):
WeeChat upstream has released 0.3.9.1 version, correcting one (heap-based) buffer overflow flaw. References: [1] http://weechat.org/ [2] http://weechat.org/security/ [3] https://savannah.nongnu.org/bugs/?37704 [4] https://bugzilla.redhat.com/show_bug.cgi?id=875181 Relevant upstream patch: [5] http://git.savannah.gnu.org/gitweb/?p=weechat.git;a=commitdiff;h=9453e81baa7... Reproducible: Always -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.