cve-2009-2703-00

Summary IRC crash from malicious server
Date 2009-09-03
CVE Number CVE-2009-2703
Discovered By Cristofaro Mune
Fixed In Release 2.6.2

Description

A specially crafted IRC TOPIC message can trigger a NULL pointer dereference in the IRC protocol plugin’s code for handling IRC topics.

Mitigation

Correctly ignore invalid TOPIC messages sent from the server.

We've launched the new site. Think we're missing something?
Read the blog post or Go to the old site