CVE-2017-14727
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2017-14727
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-14727.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2017-14727
- Downstream
- Related
- Published
- 2017-09-23T20:29:00Z
- Modified
- 2025-09-19T08:57:45.865211Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
logger.c in the logger plugin in WeeChat before 1.9.1 allows a crash via strftime date/time specifiers, because a buffer is not initialized.
- References
Affected packages
Alpine:v3.5
weechat
Package
- Name
- weechat
- Purl
- pkg:apk/alpine/weechat?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.6.0-r2
Affected versions
0.*
0.3.6-r0
0.3.6-r1
0.3.6-r2
0.3.7-r0
0.3.7-r1
0.3.8-r0
0.3.9.2-r0
0.4.0-r0
0.4.0-r1
0.4.1-r0
0.4.2-r0
0.4.2-r1
0.4.3-r0
0.4.3-r1
1.*
1.0-r0
1.1-r0
1.1.1-r0
1.1.1-r1
1.1.1-r2
1.2-r0
1.2-r1
1.2-r2
1.3-r0
1.3-r1
1.3-r2
1.3-r3
1.4-r0
1.5-r0
1.5-r1
1.5-r2
1.5-r3
1.5-r4
1.6-r0
1.6-r1
1.6-r2
Alpine:v3.6
weechat
Package
- Name
- weechat
- Purl
- pkg:apk/alpine/weechat?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.7.1-r2
Affected versions
0.*
0.3.6-r0
0.3.6-r1
0.3.6-r2
0.3.7-r0
0.3.7-r1
0.3.8-r0
0.3.9.2-r0
0.4.0-r0
0.4.0-r1
0.4.1-r0
0.4.2-r0
0.4.2-r1
0.4.3-r0
0.4.3-r1
1.*
1.0-r0
1.1-r0
1.1.1-r0
1.1.1-r1
1.1.1-r2
1.2-r0
1.2-r1
1.2-r2
1.3-r0
1.3-r1
1.3-r2
1.3-r3
1.4-r0
1.5-r0
1.5-r1
1.5-r2
1.5-r3
1.5-r4
1.6-r0
1.7-r0
1.7-r1
1.7.1-r0
1.7.1-r1
Alpine:v3.7
weechat
Package
- Name
- weechat
- Purl
- pkg:apk/alpine/weechat?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.9.1-r0
Affected versions
0.*
0.3.6-r0
0.3.6-r1
0.3.6-r2
0.3.7-r0
0.3.7-r1
0.3.8-r0
0.3.9.2-r0
0.4.0-r0
0.4.0-r1
0.4.1-r0
0.4.2-r0
0.4.2-r1
0.4.3-r0
0.4.3-r1
1.*
1.0-r0
1.1-r0
1.1.1-r0
1.1.1-r1
1.1.1-r2
1.2-r0
1.2-r1
1.2-r2
1.3-r0
1.3-r1
1.3-r2
1.3-r3
1.4-r0
1.5-r0
1.5-r1
1.5-r2
1.5-r3
1.5-r4
1.6-r0
1.7-r0
1.7-r1
1.7.1-r0
1.7.1-r1
1.8-r0
1.8-r1
1.8-r2
1.9-r0
Alpine:v3.8
weechat
Package
- Name
- weechat
- Purl
- pkg:apk/alpine/weechat?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.9.1-r0
Affected versions
0.*
0.3.6-r0
0.3.6-r1
0.3.6-r2
0.3.7-r0
0.3.7-r1
0.3.8-r0
0.3.9.2-r0
0.4.0-r0
0.4.0-r1
0.4.1-r0
0.4.2-r0
0.4.2-r1
0.4.3-r0
0.4.3-r1
1.*
1.0-r0
1.1-r0
1.1.1-r0
1.1.1-r1
1.1.1-r2
1.2-r0
1.2-r1
1.2-r2
1.3-r0
1.3-r1
1.3-r2
1.3-r3
1.4-r0
1.5-r0
1.5-r1
1.5-r2
1.5-r3
1.5-r4
1.6-r0
1.7-r0
1.7-r1
1.7.1-r0
1.7.1-r1
1.8-r0
1.8-r1
1.8-r2
1.9-r0
Alpine:v3.9
weechat
Package
- Name
- weechat
- Purl
- pkg:apk/alpine/weechat?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.9.1-r0
Affected versions
0.*
0.3.6-r0
0.3.6-r1
0.3.6-r2
0.3.7-r0
0.3.7-r1
0.3.8-r0
0.3.9.2-r0
0.4.0-r0
0.4.0-r1
0.4.1-r0
0.4.2-r0
0.4.2-r1
0.4.3-r0
0.4.3-r1
1.*
1.0-r0
1.1-r0
1.1.1-r0
1.1.1-r1
1.1.1-r2
1.2-r0
1.2-r1
1.2-r2
1.3-r0
1.3-r1
1.3-r2
1.3-r3
1.4-r0
1.5-r0
1.5-r1
1.5-r2
1.5-r3
1.5-r4
1.6-r0
1.7-r0
1.7-r1
1.7.1-r0
1.7.1-r1
1.8-r0
1.8-r1
1.8-r2
1.9-r0
Git
github.com/weechat/weechat
Affected ranges
- Type
- GIT
- Repo
- https://github.com/weechat/weechat
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
Other
release-0-0-1
release-0-0-2
release-0-0-3
release-0-0-4
release-0-0-5
release-0-0-6
release-0-0-7
release-0-0-8
release-0-0-9
release-0-1-0
release-0-1-1
release-0-1-2
release-0-1-3
release-0-1-4
release-0-1-5
release-0-1-6
release-0-1-7
release-0-1-8
release-0-1-9
release-0-2-0
release-0-2-1
release-0-2-2
release-0-2-3
release-0-2-4
release-0-2-5
v0.*
v0.0.1
v0.0.2
v0.0.3
v0.0.4
v0.0.5
v0.0.6
v0.0.7
v0.0.8
v0.0.9
v0.1.0
v0.1.1
v0.1.2
v0.1.3
v0.1.4
v0.1.5
v0.1.6
v0.1.7
v0.1.8
v0.1.9
v0.2.0
v0.2.1
v0.2.2
v0.2.3
v0.2.4
v0.2.5
v0.2.6
v0.3.0
v0.3.0-rc1
v0.3.0-rc2
v0.3.0-rc3
v0.3.1
v0.3.2
v0.3.2-rc1
v0.3.3
v0.3.3-rc1
v0.3.3-rc2
v0.3.3-rc3
v0.3.4
v0.3.4-rc1
v0.3.4-rc2
v0.3.4-rc3
v0.3.5
v0.3.5-rc1
v0.3.5-rc2
v0.3.5-rc3
v0.3.6
v0.3.6-rc1
v0.3.6-rc2
v0.3.6-rc3
v0.3.7
v0.3.7-rc1
v0.3.7-rc2
v0.3.7-rc3
v0.3.8
v0.3.8-rc1
v0.3.8-rc2
v0.3.9
v0.3.9-rc1
v0.3.9-rc2
v0.4.0
v0.4.0-rc1
v0.4.0-rc2
v0.4.0-rc3
v0.4.1
v0.4.1-rc1
v0.4.1-rc2
v0.4.2
v0.4.2-rc1
v0.4.2-rc2
v0.4.3
v0.4.3-rc1
v0.4.3-rc2
v1.*
v1.0
v1.0-rc1
v1.0-rc2
v1.0-rc3
v1.1
v1.1-rc1
v1.1-rc2
v1.2
v1.2-rc1
v1.2-rc2
v1.3
v1.3-rc1
v1.3-rc2
v1.4
v1.4-rc1
v1.4-rc2
v1.5
v1.5-rc1
v1.5-rc2
v1.6
v1.6-rc1
v1.6-rc2
v1.7
v1.7-rc1
v1.7-rc2
v1.8
v1.8-rc1
v1.9
v1.9-rc1
v1.9-rc2
Database specific
{
"vanir_signatures": [
{
"digest": {
"threshold": 0.9,
"line_hashes": [
"170773509928154751479710606776237040763",
"237308360498408220310260530371249725246",
"10393286597988245061607581881250570256",
"142633329609863538958440850511094736890",
"59179709387307661710312013769750997199",
"38870636279499039213458583927901942414",
"12014968714811209323881381971033427845",
"171360617087082458170711858982298322195",
"54389341007443020156669760539280105183",
"333804995871122281858402152413478048122",
"100576315683443650551677216263893387208",
"294818707222886027522663250928605470711",
"307818560861228328586683512412050312656",
"103199274744530277918538084863188522900",
"119878620889294396324412496275722282965",
"136348436901529359361827113246458330096",
"27380423915514142819662237032468771453",
"314957055069730641521329396920877734870",
"124396455555445469758548740141750189780",
"79824535120446192235353060782403030413",
"127660784454887595572668568782211532832",
"155576718715398878875537603315037499093",
"215386899310165895157852949370985738041",
"52533862405131551259284877327101670671",
"259351158318020861156815277739985425670",
"289151465185287331232746447085643265811",
"61661078011562799915094550259624405824",
"281610449807137159598750948519188446337",
"53093743963042786944162311225797223936",
"301293759848643900244115674967542385536",
"338891881211026587900954235364767369769",
"135870506344505448895049157251985337454",
"112200652825481983768859271530675882791",
"238971132729297460865920521673271058894",
"270978184716875515782924507135553886320",
"130513285988024201014924219642661699156",
"120866271656626384049386293042761727502",
"145704897024969338685708046801466434264",
"256596882769971908197749701284157609190",
"160162072844295790929345564488917656240",
"37625326552263767808580077069052895726",
"201657696754097016665723773849689755349",
"92965460573344646335663159280352794353",
"272909398761115434999926300507079305013",
"200774378162292862980561484899567860619",
"339143388981428787803074307723164760098",
"52204715842098260249273175341822894713",
"65569329782503795407563160786586060618",
"155613931555744231585279332488657101577",
"332899048743490956799442511428771578618",
"154988045710622114713717878060835266287",
"156788134656017729924282146574686165717",
"333516270655194357653140906477457138908",
"62534946277781260572384753165349144498",
"192647027075265191129904041353861687277",
"247296518109704560182093575457504004921",
"219976687675206257339274716733941383114",
"41164156565970040101944195052764973816",
"271269837606409226327446998218597208470",
"322750209629461202577052129357631447603",
"319300271870536544656061292061760621529",
"241721554091473910159699125999055406882",
"294991960825917142046537478653797107109",
"299910582308124548764107396599096756883",
"163275181162821078816768700647007279537",
"73244506414227479416911864183505911323",
"324465517084701743203825471510126000804",
"281013914468663009277169711617173193092"
]
},
"signature_type": "Line",
"source": "https://github.com/weechat/weechat/commit/f105c6f0b56fb5687b2d2aedf37cb1d1b434d556",
"signature_version": "v1",
"target": {
"file": "src/plugins/logger/logger.c"
},
"deprecated": false,
"id": "CVE-2017-14727-82560d30"
},
{
"digest": {
"function_hash": "299004748674351366492445718559814171411",
"length": 1478.0
},
"signature_type": "Function",
"source": "https://github.com/weechat/weechat/commit/f105c6f0b56fb5687b2d2aedf37cb1d1b434d556",
"signature_version": "v1",
"target": {
"file": "src/plugins/logger/logger.c",
"function": "logger_get_mask_expanded"
},
"deprecated": false,
"id": "CVE-2017-14727-be65734a"
}
]
}