Security Information / 2013 / Security Information -- DSA-2618-1 ircd-hybrid

Debian Security Advisory

DSA-2618-1 ircd-hybrid -- denial of service

Date Reported:

07 Feb 2013

Affected Packages:

ircd-hybrid

Vulnerable:

Yes

Security database references:

In the Debian bugtracking system: Bug 699267.
In Mitre's CVE dictionary: CVE-2013-0238.

More information:

Bob Nomnomnom reported a Denial of Service vulnerability in IRCD-Hybrid, an Internet Relay Chat server. A remote attacker may use an error in the masks validation and crash the server.

For the stable distribution (squeeze), this problem has been fixed in version 1:7.2.2.dfsg.2-6.2+squeeze1.

For the testing distribution (wheezy), this problem has been fixed in version 1:7.2.2.dfsg.2-10.

For the unstable distribution (sid), this problem has been fixed in version 1:7.2.2.dfsg.2-10.

We recommend that you upgrade your ircd-hybrid packages.