Security Information / 2018 / Security Information -- DSA-4189-1 quassel

Debian Security Advisory

DSA-4189-1 quassel -- security update

Date Reported:

02 May 2018

Affected Packages:

quassel

Vulnerable:

Yes

Security database references:

In Mitre's CVE dictionary: CVE-2018-1000178, CVE-2018-1000179.

More information:

Two vulnerabilities were found in the Quassel IRC client, which could result in the execution of arbitrary code or denial of service.

Note that you need to restart the quasselcore service after upgrading the Quassel packages.

For the oldstable distribution (jessie), these problems have been fixed in version 1:0.10.0-2.3+deb8u4.

For the stable distribution (stretch), these problems have been fixed in version 1:0.12.4-2+deb9u1.

We recommend that you upgrade your quassel packages.

For the detailed security status of quassel please refer to its security tracker page at: https://security-tracker.debian.org/tracker/quassel