(RHSA-2004:585) xchat security update

2004-10-2700:00:00

access.redhat.com

0.231 Low

EPSS

Percentile

96.6%

JSON

X-Chat is a graphical IRC chat client for the X Window System.

A stack buffer overflow has been fixed in the SOCKSv5 proxy code.
An attacker could create a malicious SOCKSv5 proxy server in such a way
that X-Chat would execute arbitrary code if a victim configured X-Chat to
use the proxy. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CAN-2004-0409 to this issue.

Users of X-Chat should upgrade to this erratum package, which contains a
backported security patch, and is not vulnerable to this issue.

OSVersionArchitecturePackageVersionFilename
RedHatanyi386xchat< 1.8.9-1.21as.2xchat-1.8.9-1.21as.2.i386.rpm
RedHatanys390xxchat< 2.0.4-4.ELxchat-2.0.4-4.EL.s390x.rpm
RedHatanyia64xchat< 2.0.4-4.ELxchat-2.0.4-4.EL.ia64.rpm
RedHatanyx86_64xchat< 2.0.4-4.ELxchat-2.0.4-4.EL.x86_64.rpm
RedHatanyia64xchat< 1.8.9-1.21as.2xchat-1.8.9-1.21as.2.ia64.rpm
RedHatanyppcxchat< 2.0.4-4.ELxchat-2.0.4-4.EL.ppc.rpm
RedHatanyi386xchat< 2.0.4-4.ELxchat-2.0.4-4.EL.i386.rpm
RedHatanys390xchat< 2.0.4-4.ELxchat-2.0.4-4.EL.s390.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	any	i386	xchat	< 1.8.9-1.21as.2	xchat-1.8.9-1.21as.2.i386.rpm
RedHat	any	s390x	xchat	< 2.0.4-4.EL	xchat-2.0.4-4.EL.s390x.rpm
RedHat	any	ia64	xchat	< 2.0.4-4.EL	xchat-2.0.4-4.EL.ia64.rpm
RedHat	any	x86_64	xchat	< 2.0.4-4.EL	xchat-2.0.4-4.EL.x86_64.rpm
RedHat	any	ia64	xchat	< 1.8.9-1.21as.2	xchat-1.8.9-1.21as.2.ia64.rpm
RedHat	any	ppc	xchat	< 2.0.4-4.EL	xchat-2.0.4-4.EL.ppc.rpm
RedHat	any	i386	xchat	< 2.0.4-4.EL	xchat-2.0.4-4.EL.i386.rpm
RedHat	any	s390	xchat	< 2.0.4-4.EL	xchat-2.0.4-4.EL.s390.rpm

0.231 Low

EPSS

Percentile

96.6%

JSON

Related for RHSA-2004:585