ZNC 1.8.0 up to 1.8.1-rc1 allows authenticated users to trigger an application crash (with a NULL pointer dereference) if echo-message is not enabled and there is no network.
References
Configurations
History
21 Nov 2024, 05:01
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/znc/znc/commit/2390ad111bde16a78c98ac44572090b33c3bd2d8 - Patch, Third Party Advisory | |
References | () https://github.com/znc/znc/commit/d229761821da38d984a9e4098ad96842490dc001 - Patch, Third Party Advisory | |
References | () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DNVBE4T2DRJRQHFRMHYBTN4OSOL6DBHR/ - | |
References | () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HS3DWGXLVRROQQA57UIPMDM6XMVEMBRA/ - |
07 Nov 2023, 03:16
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2020-06-02 23:15
Updated : 2024-11-21 05:01
NVD link : CVE-2020-13775
Mitre link : CVE-2020-13775
CVE.ORG link : CVE-2020-13775
JSON object : View
Products Affected
fedoraproject
- fedora
znc
- znc
CWE
CWE-476
NULL Pointer Dereference