Possible DoS attack vulnerability for multiple CTCP requests
Thanks to Jima for reporting and supporting.
#1 Updated by johu almost 4 years ago
- Status changed from New to Resolved
- % Done changed from 0 to 100
If we receive multiple CTCP requests in one PRIVMSG we now answer with one packed NOTICE containing all CTCP replies. This fixes a possible DoS Attack rendering Quassels IRC connection useless. Upgrading is strongly recommended. Thanks to Jima for reporting and supporting.
fixed with a4ca568c