CVE-2009-1959
EPSS 6.5%
Description
Off-by-one error in the event_wallops function in fe-common/irc/fe-events.c in irssi 0.8.13 allows remote IRC servers to cause a denial of service (crash) via an empty command, which triggers a one-byte buffer under-read and a one-byte buffer underflow.
How to fix CVE-2009-1959
To remediate CVE-2009-1959, upgrade the affected package to a fixed version below.
- Debian/irssi—upgrade to 0.8.13-2 or later
Is CVE-2009-1959 being exploited?
Moderate — EPSS is 6.5%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (1)
- from 0, < 0.8.13-2