Ubuntu
quassel package

remote DoS

Bug #845707 reported by Jamie Strandboge on 2011-09-09

260

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	Lucid Backports	Fix Released	Undecided	Scott Kitterman
	maverick-backports	Fix Released	Undecided	Scott Kitterman
	quassel (Ubuntu)	Fix Released	Medium	Scott Kitterman
	Lucid	Fix Released	Medium	Jamie Strandboge
	Maverick	Fix Released	Medium	Jamie Strandboge
	Natty	Fix Released	Medium	Jamie Strandboge
	Oneiric	Fix Released	Medium	Scott Kitterman

Bug Description

From http://www.openwall.com/lists/oss-security/2011/09/08/7:
"CtcpParser::packedReply in src/core/ctcpparser.cpp in Quassel does not process
certain CTCP requests correctly, allowing a remote attacker connected to the
same IRC network as the victim to cause a Denial of Service condition by
sending specially crafted CTCP requests. This was demonstrated in various
exploits on freenode today."

This is fixed in 0.7.3.

Related branches

lp:ubuntu/natty-security/quassel

lp:ubuntu/maverick-security/quassel

lp:ubuntu/lucid-security/quassel

CVE References

2011-3354

Jamie Strandboge (jdstrand) on 2011-09-09

visibility:	private → public
Changed in quassel (Ubuntu Oneiric):
assignee:	nobody → Scott Kitterman (kitterman)
status:	New → Fix Released
importance:	Undecided → Medium
Changed in quassel (Ubuntu Lucid):
status:	New → In Progress
importance:	Undecided → Medium
assignee:	nobody → Jamie Strandboge (jdstrand)
Changed in quassel (Ubuntu Maverick):
status:	New → In Progress
importance:	Undecided → Medium
assignee:	nobody → Jamie Strandboge (jdstrand)
Changed in quassel (Ubuntu Natty):
status:	New → In Progress
importance:	Undecided → Medium
assignee:	nobody → Jamie Strandboge (jdstrand)

Jamie Strandboge (jdstrand) on 2011-09-09

Changed in quassel (Ubuntu Lucid):
status:	In Progress → Fix Committed
Changed in quassel (Ubuntu Maverick):
status:	In Progress → Fix Committed
Changed in quassel (Ubuntu Natty):
status:	In Progress → Fix Committed

Revision history for this message

Jamie Strandboge (jdstrand) wrote on 2011-09-09:

#1

These have been uploaded to https://launchpad.net/~ubuntu-security-proposed/+archive/ppa/+packages.

Revision history for this message

Scott Kitterman (kitterman) wrote on 2011-09-09:

#2

quassel (0.7.2-0ubuntu2.2~maverick1) maverick-backports; urgency=low

* No change backport from ubuntu-security-proposed PPA for maverick

Date: Fri, 09 Sep 2011 15:40:05 -0400
Changed-By: Scott Kitterman <email address hidden>
Maintainer: Ubuntu Developers <email address hidden>
https://launchpad.net/ubuntu/maverick/+source/quassel/0.7.2-0ubuntu2.2~maverick1

Changed in maverick-backports:
status:	New → Fix Released

Revision history for this message

Scott Kitterman (kitterman) wrote on 2011-09-09:

#3

quassel (0.7.2-0ubuntu2.2~lucid1) lucid-backports; urgency=low

* No change backport from ubuntu-security-proposed PPA for lucid

Date: Fri, 09 Sep 2011 15:40:05 -0400
Changed-By: Scott Kitterman <email address hidden>
Maintainer: Ubuntu Developers <email address hidden>
https://launchpad.net/ubuntu/lucid/+source/quassel/0.7.2-0ubuntu2.2~lucid1

Changed in lucid-backports:
status:	New → Fix Released
assignee:	nobody → Scott Kitterman (kitterman)
Changed in maverick-backports:
assignee:	nobody → Scott Kitterman (kitterman)

Revision history for this message

Launchpad Janitor (janitor) wrote on 2011-09-10:

#4

This bug was fixed in the package quassel - 0.6.1-0ubuntu1.2

---------------
quassel (0.6.1-0ubuntu1.2) lucid-security; urgency=low

  * SECURITY UPDATE: DoS in CTCP parser (LP: #845707)
    - debian/patches/11-quassel_CTCP_DoS_lp845707.patch: adjust for
      quotedReply to use QByteArray.append()
    - CVE-2011-XXXX
-- Jamie Strandboge <email address hidden> Fri, 09 Sep 2011 10:41:22 -0500

Changed in quassel (Ubuntu Lucid):
status:	Fix Committed → Fix Released

Revision history for this message

Launchpad Janitor (janitor) wrote on 2011-09-10:

#5

This bug was fixed in the package quassel - 0.7.1-0ubuntu1.1

---------------
quassel (0.7.1-0ubuntu1.1) maverick-security; urgency=low

  * SECURITY UPDATE: DoS in CTCP parser (LP: #845707)
    - debian/patches/security_fix-ctcp-parser-dos.patch: adjust for
      quotedReply to use QByteArray.append()
    - CVE-2011-XXXX
-- Jamie Strandboge <email address hidden> Fri, 09 Sep 2011 10:36:15 -0500

Changed in quassel (Ubuntu Maverick):
status:	Fix Committed → Fix Released

Revision history for this message

Launchpad Janitor (janitor) wrote on 2011-09-10:

#6

This bug was fixed in the package quassel - 0.7.2-0ubuntu2.2

---------------
quassel (0.7.2-0ubuntu2.2) natty-security; urgency=low

  * SECURITY UPDATE: DoS in CTCP parser (LP: #845707)
    - debian/patches/security_fix-ctcp-parser-dos.patch: adjust for
      quotedReply to use QByteArray.append()
    - CVE-2011-XXXX
-- Jamie Strandboge <email address hidden> Fri, 09 Sep 2011 10:26:10 -0500

Changed in quassel (Ubuntu Natty):
status:	Fix Committed → Fix Released

Report a bug

This report contains Public Security information

Everyone can see this security related information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.