Overview: 1 vulnerability

WSA CVE Score Severity Issue Vulnerability type Scope Versions Fix Release date
WSA-2025-1 - 3.9
Integer overflow with decimal numbers in calculation of expression. Integer Overflow or Wraparound Core 2.7 → 4.6.2 4.6.3

WSA-2025-1: [Core] Integer overflow with decimal numbers in calculation of expression.

Vulnerability
CVE
Not available
CVSS vector
AV:P/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L/E:X/RL:O/RC:C (detail)
CVSS score
3.9 / 10
Severity
medium
Vulnerability type
Integer Overflow or Wraparound (detail)
Scope
Core
Affected versions
2.7 → 4.6.2
Fixed version
4.6.3 () - ChangeLog
Tracker
Not available
Commits
Commit
Description
An integer overflow happens when using numbers with 9 or more decimals in calculation of expression, for example: /eval -n ${calc:0.123456789}.
Mitigation
There is no known mitigation.
The upgrade to the latest stable version is highly recommended.

GitHub Mastodon Diaspora X

Copyright © 2003-2025 Sébastien HelleuAbout WeeChat.org — Theme: dark (light)