Security vulnerabilities in version 0.2.6.1
This page lists all known and fixed security vulnerabilities in version 0.2.6.1 (back to the list of all versions).
Overview: 1 vulnerability
||Possible man-in-the-middle attack in TLS connection to IRC server.
||Improper certificate validation
||0.1.3 → 0.3.4
WSA-2011-1: [IRC] Possible man-in-the-middle attack in TLS connection to IRC server.
Improper certificate validation
0.1.3 → 0.3.4
Due to insufficient check of TLS certificate in IRC plugin, man-in-the-middle attackers can spoof a server via an arbitrary certificate.
There is no known mitigation.
The upgrade to the latest stable version is highly recommended.