← back
CVE-2020-14148

CVE-2020-14148

EPSS 2.6%
The Server-Server protocol implementation in ngIRCd before 26~rc2 allows an out-of-bounds access, as demonstrated by the IRC_NJOIN() function.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/ngircd/ngircd/issues/274https://github.com/ngircd/ngircd/issues/277https://github.com/ngircd/ngircd/pull/275https://github.com/ngircd/ngircd/pull/276https://github.com/ngircd/ngircd/releases/tag/rel-26-rc2https://lists.debian.org/debian-lts-announce/2020/06/msg00023.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BJOYV5GHUFJMUVQW3TJKXZ7JPXL4W3ER/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JZRYFJIA6ZKOH7U4K5WH5OL7OKXE4N52/