Hi,
I can't reproduce this bug on my amd64 testing debian, using XFCE and
xchat 2.8.8-6.
With the proof of concept script referenced in the CVE, I get no crash.
Only the following line on STDERR repeated thousands of times:
*** XCHAT WARNING: Buffer overflow - shit server!
The part of the code
Package: xchat
Severity: grave
Tags: security
Hi,
the following vulnerability was published for xchat.
CVE-2011-5129[0]:
| Heap-based buffer overflow in XChat 2.8.9 and earlier allows remote
| attackers to cause a denial of service (crash) and possibly execute
| arbitrary code via a long
2 matches
Mail list logo
