ircmodechannel_update in plugins/irc/irc-mode.c in WeeChat through 2.7 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a malformed IRC message 324 (channel mode).
{ "vanir_signatures": [ { "source": "https://github.com/weechat/weechat/commit/6f4f147d8e86adf9ad34a8ffd7e7f1f23a7e74da", "signature_version": "v1", "id": "CVE-2020-8955-1b8299ba", "signature_type": "Function", "target": { "file": "src/plugins/irc/irc-mode.c", "function": "irc_mode_channel_update" }, "digest": { "function_hash": "223350524238790654043842164543245510326", "length": 2502.0 }, "deprecated": false }, { "source": "https://github.com/weechat/weechat/commit/6f4f147d8e86adf9ad34a8ffd7e7f1f23a7e74da", "signature_version": "v1", "id": "CVE-2020-8955-afbcfe2f", "signature_type": "Line", "target": { "file": "src/plugins/irc/irc-mode.c" }, "digest": { "line_hashes": [ "200879968070498314343440529766462460162", "267790770994180775470654757621928752132", "84311193978423127644732102481155587185", "37738585302980977653187765980868653464", "103144408093402382474082176671652325727", "248047512738540522610242778759283707096", "13726779807730142557510816354576803671", "304711207680069284387163760563633707915", "134091926362240965518819909662205922465", "77567932931264461531056880510287982960", "61653280659459939285653700726216165635", "144127429652462822056848416788256299906", "293177098233781010308844640392180242208", "285905928978361185004924297576737108114" ], "threshold": 0.9 }, "deprecated": false } ] }