|
|
Subscribe / Log in / New account

znc: denial of service

Package(s):znc CVE #(s):CVE-2014-9403
Created:December 19, 2014 Updated:December 2, 2015
Description: From the ZNC bug report:

Adding an already existing channel to a user/network via web admin causes a crash if the channel name isn't prefixed with '#' (i.e you already have a channel '#potato' but you try to add 'potato' without the '#' prefix).

This only appears to happen if the channel is already in the list and not if you are adding a new channel that isn't already in the list.

Alerts:
openSUSE openSUSE-SU-2015:2164-1 znc 2015-12-02
openSUSE openSUSE-SU-2015:2163-1 znc 2015-12-02
Mandriva MDVSA-2015:013 znc 2015-01-08
Mageia MGASA-2014-0543 znc 2014-12-21
Gentoo 201412-31 znc 2014-12-18
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds