Quassel-irc Quassel

9 CVEs affecting Quassel-irc Quassel. Latest disclosed: 2021-06-17. Critical: 1, High: 4.

Top CVEs affecting Quassel-irc Quassel
CVESeverityScorePublishedSummary
CVE-2018-1000178Critical9.82018-05-08A heap corruption of type CWE-120 exists in quassel version 0.12.4 in quasselcore in void DataStreamPeer::processMessage(const QByteArray &msg) datastreampeer…
CVE-2021-34825High7.52021-06-17Quassel through 0.13.1, when --require-ssl is enabled, launches without SSL or TLS support if a usable X.509 certificate is not found on the local system.
CVE-2018-1000179High7.52018-05-08A NULL Pointer Dereference of CWE-476 exists in quassel version 0.12.4 in the quasselcore void CoreAuthHandler::handle(const Login &msg) coreauthhandler.cpp li…
CVE-2016-4414High7.52016-06-13The onReadyRead function in core/coreauthhandler.cpp in Quassel before 0.12.4 allows remote attackers to cause a denial of service (NULL pointer dereference an…
CVE-2015-8547High7.52016-01-08The CoreUserInputHandler::doMode function in core/coreuserinputhandler.cpp in Quassel 0.10.0 allows remote attackers to cause a denial of service (application…
CVE-2015-34272015-05-14Quassel before 0.12.2 does not properly re-initialize the database session when the PostgreSQL database is restarted, which allows remote attackers to conduct…
CVE-2015-27792015-04-10Stack consumption vulnerability in the message splitting functionality in Quassel before 0.12-rc1 allows remote attackers to cause a denial of service (uncontr…
CVE-2015-27782015-04-10Quassel before 0.12-rc1 uses an incorrect data-type size when splitting a message, which allows remote attackers to cause a denial of service (crash) via a lon…
CVE-2011-33542011-10-04The CtcpParser::packedReply method in core/ctcpparser.cpp in Quassel before 0.7.3 allows remote attackers to cause a denial of service (crash) via a crafted Cl…