{ "schema_version": "1.4.0", "id": "GHSA-rm2r-8wh7-276p", "modified": "2025-04-11T04:04:59Z", "published": "2022-05-17T04:53:24Z", "aliases": [ "CVE-2012-5854" ], "details": "Heap-based buffer overflow in WeeChat 0.3.6 through 0.3.9 allows remote attackers to cause a denial of service (crash or hang) and possibly execute arbitrary code via crafted IRC colors that are not properly decoded.", "severity": [], "affected": [], "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5854" }, { "type": "WEB", "url": "https://savannah.nongnu.org/bugs/?37704" }, { "type": "WEB", "url": "https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0330" }, { "type": "WEB", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2012-November/092228.html" }, { "type": "WEB", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2012-November/092490.html" }, { "type": "WEB", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2012-November/092536.html" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-security-announce/2013-01/msg00018.html" }, { "type": "WEB", "url": "http://lists.opensuse.org/opensuse-updates/2012-11/msg00087.html" }, { "type": "WEB", "url": "http://osvdb.org/87279" }, { "type": "WEB", "url": "http://secunia.com/advisories/51377" }, { "type": "WEB", "url": "http://weechat.org/security" }, { "type": "WEB", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:136" }, { "type": "WEB", "url": "http://www.openwall.com/lists/oss-security/2012/11/12/2" }, { "type": "WEB", "url": "http://www.securityfocus.com/bid/56482" } ], "database_specific": { "cwe_ids": [ "CWE-119" ], "severity": "HIGH", "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2012-11-19T12:10:00Z" } }