ZNC NULL Pointer Dereference

2014.12.14

Credit: Sean

Risk: Medium

Local: No

Remote: Yes

CVE: N/A

CWE: N/A

Hello,

It looks like the following issue has not received a CVE identifier as
of yet:

A NULL pointer dereference has been found in the
"CWebAdminMod::ChanPage()" function in modules/webadmin.cpp.

This was reported to Gentoo [1] by means of a Secunia advisory [2],
which in turn referenced the upstream bug request [3].


[1] https://bugs.gentoo.org/show_bug.cgi?id=507794
[2] https://secunia.com/advisories/57795/
[3] https://github.com/znc/znc/issues/528


Thanks,
Sean

References:

http://seclists.org/oss-sec/2014/q4/1044

https://bugs.gentoo.org/show_bug.cgi?id=507794

https://secunia.com/advisories/57795/

https://github.com/znc/znc/issues/528

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

ZNC NULL Pointer Dereference

References:

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.