23317 2010-04-11 00:26:34 +0400 Irssi 0.8.15 Released 2010-04-19 13:43:30 +0400 1 1 4 Development Sisyphus irssi unstable all Linux CLOSED FIXED http://irssi.org/news P3 enhancement --- 1 raorn crux crux qa-sisyphus oldest_to_newest 108517 0 raorn 2010-04-11 00:26:34 +0400 The Irssi team is pleased to announce the 0.8.15 release of Irssi. It has been quite some time since our last release and there has been various feature enhancements and bugfixes added since then. This release fixes two security issues: The first being that Irssi didn't check hostname on SSL connections and the other being a hard to exploit remote crash bug. 108728 1 repository-robot 2010-04-19 13:43:30 +0400 irssi-0.8.15-alt1 -> sisyphus: * Mon Apr 19 2010 Vladimir V. Kamarzin <vvk@altlinux> 0.8.15-alt1 - 0.8.15 (Closes: #23317). Security fixes: + CVE-2010-1155 (poor verification the hostname of the server when using SSL connections) + CVE-2010-1156 (A NULL-pointer dereference error in src/core/nicklist.c can be exploited to cause a crash)