Overview: 1 vulnerability

WSA Score Severity Issue Vulnerability type Scope Versions Fix Release date
WSA-2026-5 6.2
Buffer overflow when receiving a DCC file. Out-of-bounds read IRC 4.1.0 → 4.9.1 4.9.2

WSA-2026-5: [IRC] Buffer overflow when receiving a DCC file.

Vulnerability
CVE
Not available
CVSS vector
AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:X/RL:O/RC:C (detail)
CVSS score
6.2 / 10
Severity
medium
Vulnerability type
Out-of-bounds read (detail)
Scope
IRC
Affected versions
4.1.0 → 4.9.1
Fixed version
4.9.2 () - ChangeLog
Tracker
issue #2322
Commits
Commit
Description
Buffer overflow when removing quotes in DCC filename.
Mitigation
There is no known mitigation.
The upgrade to the latest stable version is highly recommended.
Credit
The issue was discovered by aizu-m.

GitHub Mastodon X

Copyright © 2003-2026 Sébastien HelleuAbout WeeChat.org — Theme: light (dark)