It was found that quasselcore is vulnerable to a denial of service attack by
unauthenticated clients. The protocol negotiation did not take into account
lack of a match, in which case PeerFactory::createPeer returns a nullptr,
which is immediately dereferenced.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
any | any | any | quassel-core | < 0.12.4-1 | UNKNOWN |