CVE-2019-5882
CRITICALirssi 1.1.0-1.1.1 - Use-After-Free in Scroll Buffer Hidden Line Expiration
Title source: llmDescription
Irssi 1.1.x before 1.1.2 has a use after free when hidden lines are expired from the scroll buffer.
References (4)
Core 4
Core References
Vendor Advisory x_refsource_misc
https://irssi.org/security/irssi_sa_2019_01.txt
Vendor Advisory x_refsource_misc
https://irssi.org/NEWS/#v1-1-2
Patch, Third Party Advisory x_refsource_misc
https://github.com/irssi/irssi/pull/948
Third Party Advisory vendor-advisory
x_refsource_ubuntu
https://usn.ubuntu.com/3862-1/
Scores
CVSS v3
9.8
EPSS
0.0052
EPSS Percentile
67.1%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-416
Status
published
Products (5)
canonical/ubuntu_linux
14.04
canonical/ubuntu_linux
16.04
canonical/ubuntu_linux
18.04
canonical/ubuntu_linux
18.10
irssi/irssi
1.1.0 - 1.1.2
Published
Jan 09, 2019
Tracked Since
Feb 18, 2026