SUSE Package Hub - openSUSE-2019-1859

Update Info

openSUSE-2019-1859

Security update for znc

Type: security

Severity: important

Issued: 2019-08-13

Description:

This update for znc to version 1.7.4 fixes the following issues:

Security issues fixed:

- CVE-2019-12816: Fixed a remote code execution in Modules.cpp (boo#1138572).
- CVE-2019-9917: Fixed a denial of service on invalid encoding (boo#1130360).

This update was imported from the openSUSE:Leap:15.0:Update update project.

References

CVE: CVE-2019-9917
CVE: CVE-2019-12816
Bugzilla: 1138572 VUL-0: CVE-2019-12816: znc: remote code execution in Modules.cpp
Bugzilla: 1130360 VUL-1: CVE-2019-9917: znc: crash on invalid encoding

Packages

znc-1.7.4-bp151.4.3.1