IRSSI-SA-2019-08 Irssi Security Advisory [1] ============================================ CVE-2019-15717 Description ----------- (a) Use after free when receiving duplicate CAP found by Joseph Bisch. (CWE-416) CVE-2019-15717 [2] was assigned to this issue. Impact ------ May affect the stability of Irssi. Affected versions ----------------- (a) Irssi 1.2.0 and later Fixed in -------- Irssi 1.2.2 Recommended action ------------------ Upgrade to Irssi 1.2.2. We've published maintenance releases, without any new features. After installing the updated packages, one can issue the /upgrade command to load the new binary. TLS connections will require /reconnect. Mitigating facts ---------------- Most servers do not send duplicate CAP References ---------- [1] https://irssi.org/security/irssi_sa_2019_08.txt [2] https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15717