FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

konversation -- crash in IRC message parsing

Affected packages
konversation < 1.7.3

Details

VuXML ID 795ccee1-c7ed-11e7-ad7d-001e2a3f778d
Discovery 2017-10-27
Entry 2017-11-12

KDE reports:

Konversation has support for colors in IRC messages. Any malicious user connected to the same IRC network can send a carefully crafted message that will crash the Konversation user client.

References

CVE Name CVE-2017-15923
URL https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15923
URL https://www.kde.org/info/security/advisory-20171112-1.txt