Package: dircproxy Version: 1.0.5-3 Severity: grave Tags: security Hi, the following CVE (Common Vulnerabilities & Exposures) id was published for dircproxy.
CVE-2007-5226[0]: | irc_server.c in dircproxy 1.2.0 and earlier allows remote attackers to | cause a denial of service (segmentation fault) via an ACTION command | without a parameter, which triggers a NULL pointer dereference, as | demonstrated using a blank /me message from irssi. If you fix this vulnerability please also include the CVE id in your changelog entry. The null pointer dereference itself is not that big kind of a problem here but since this also means to lose the data you want to read while you are away I mark this as grave. For further information: [0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5226 Kind regards Nico -- Nico Golde - http://ngolde.de - [EMAIL PROTECTED] - GPG: 0x73647CFF For security reasons, all text in this mail is double-rot13 encrypted.
pgpkQpo99jdY9.pgp
Description: PGP signature
