pkg:Debian/quassel

All known vulnerabilities

• CRITICAL9.8CVE-2018-1000178quassel - security update
  from 0, < 1:0.10.0-2.3+deb8u4
• CRITICAL9.8CVE-2018-1000178quassel - security update
  from 0, < 0.8.0-1+deb7u4
• CRITICAL9.8CVE-2018-1000178quassel - security update
  from 0, < 1:0.12.5-1
• HIGH7.5Quassel through 0.13.1, when --require-ssl is enabled, launches without SSL or TLS support if a usable X.509 certificate is not found on th…
  from 0
• HIGH7.5A NULL Pointer Dereference of CWE-476 exists in quassel version 0.12.4 in the quasselcore void CoreAuthHandler::handle(const Login &msg) co…
  from 0, < 1:0.12.5-1
• HIGH7.5The onReadyRead function in core/coreauthhandler.cpp in Quassel before 0.12.4 allows remote attackers to cause a denial of service (NULL po…
  from 0, < 1:0.12.4-2
• HIGH7.5The CoreUserInputHandler::doMode function in core/coreuserinputhandler.cpp in Quassel 0.10.0 allows remote attackers to cause a denial of s…
  from 0, < 1:0.12.2-3
• —quassel - security update
  from 0, < 1:0.10.0-2.4
• —quassel - security update
  from 0, < 1:0.10.0-2.3+deb8u1
• —Stack consumption vulnerability in the message splitting functionality in Quassel before 0.12-rc1 allows remote attackers to cause a denial…
  from 0, < 1:0.10.0-2.3
• —Quassel before 0.12-rc1 uses an incorrect data-type size when splitting a message, which allows remote attackers to cause a denial of servi…
  from 0, < 1:0.10.0-2.3
• —konversation - security update
  from 0, < 0.8.0-1+deb7u3
• —konversation - security update
  from 0, < 0.10.0-2.1
• —Quassel core (server daemon) in Quassel IRC before 0.9.2 does not properly verify the user ID when accessing user backlogs, which allows re…
  from 0, < 0.9.2-1
• —ctcphandler.cpp in Quassel before 0.6.3 and 0.7.x before 0.7.1 allows remote attackers to cause a denial of service (unresponsive IRC) via…
  from 0, < 0.7.1-1
• —SQL injection vulnerability in Quassel IRC before 0.9.1, when Qt 4.8.5 or later and PostgreSQL 8.2 or later are used, allows remote attacke…
  from 0, < 0.9.1-1
• —The CtcpParser::packedReply method in core/ctcpparser.cpp in Quassel before 0.7.3 allows remote attackers to cause a denial of service (cra…
  from 0, < 0.7.3-1
• —CRLF injection vulnerability in Quassel Core before 0.3.0.3 allows remote attackers to spoof IRC messages as other users via a crafted CTCP…
  from 0, < 0.2~rc1-1.1