CVE-2018-1000179

A NULL Pointer Dereference of CWE-476 exists in quassel version 0.12.4 in the quasselcore void CoreAuthHandler::handle(const Login &msg) coreauthhandler.cpp line 235 that allows an attacker to cause a denial of service.

References

Affected packages

Debian:11 / quassel

Package

Name: quassel
Purl: pkg:deb/debian/quassel?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:0.12.5-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / quassel

Package

Name: quassel
Purl: pkg:deb/debian/quassel?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:0.12.5-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / quassel

Package

Name: quassel
Purl: pkg:deb/debian/quassel?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1:0.12.5-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Git / github.com/quassel/quassel

Affected ranges

Type: GIT
Repo: https://github.com/quassel/quassel
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Last affected

90183eeb030dd4dda32e4f107e8bcf13f393388d

Affected versions

0.*

0.10-beta1

0.10-pre

0.10-rc1

0.11-pre

0.11.0

0.12-beta1

0.12-pre

0.12-rc1

0.12.0

0.12.1

0.12.2

0.12.3

0.12.4

0.2.0-pre

0.3.0

0.3.0-pre

0.3.1

0.4.0

0.5-rc1

0.5-rc2

0.5.0

0.6-beta1

0.6-rc1

0.7-beta1

0.7-pre

0.7-rc1

0.8-beta1

0.8-pre

0.8-rc1

0.8.0

0.9-beta1

0.9-pre

0.9-rc1