Source: znc Version: 1.6.5-1+deb9u1 Followup-For: Bug #925285 Hi,
The stable version of znc (1.6.5-1+deb9u1) is still vulnerable to this attack. Please patch it also. -- System Information: Debian Release: 9.8 APT prefers stable-updates APT policy: (650, 'stable-updates'), (650, 'stable') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.19.0-0.bpo.4-amd64 (SMP w/12 CPU cores) Locale: LANG=en_AU.utf8, LC_CTYPE=en_AU.utf8 (charmap=UTF-8), LANGUAGE=en_AU:en (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system)