Bug 853042 (CVE-2013-6413) - VUL-0: CVE-2013-6413: unrealircd: remote dos
Summary: VUL-0: CVE-2013-6413: unrealircd: remote dos
Status: RESOLVED FIXED
Alias: CVE-2013-6413
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P3 - Medium : Normal
Target Milestone: ---
Assignee: Marcus Rückert
QA Contact: Security Team bot
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2013-11-30 09:50 UTC by Marcus Meissner
Modified: 2013-12-09 16:21 UTC (History)
1 user (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Marcus Meissner 2013-11-30 09:50:05 UTC 
OSS:11578

CVE-2013-6413

Can I get two CVEs for new issues in UnrealIRCd, thank you.

Release notification: http://forums.unrealircd.com/viewtopic.php?f=2&t=8221
Release notes: http://www.unrealircd.com/txt/unreal3_2_10_2_release_notes.txt
Fixed in: 3.2.10.2
Secunia: http://secunia.com/advisories/55839/

http://osvdb.org/100353 Unspecified NULL Pointer Dereference Remote DoS
http://osvdb.org/100352 Unspecified Use-after-free Remote DoS

---
Henri Salo


References:
http://osvdb.org/100352
http://osvdb.org/100353
http://secunia.com/advisories/55839/
http://comments.gmane.org/gmane.comp.security.oss.general/11578
Comment 1 Swamp Workflow Management 2013-11-30 23:00:32 UTC 
bugbot adjusting priority
Comment 2 Marcus Rückert 2013-12-09 16:21:55 UTC 
submitted. will be restarted later tonight.