Project

General

Profile

Bug #1024

Possible DoS attack vulnerability for multiple CTCP requests

Added by johu over 13 years ago. Updated over 13 years ago.

Status:
Resolved
Priority:
High
Assignee:
Category:
Quassel Core
Target version:
Start date:
09/21/2010
Due date:
09/21/2010
% Done:

100%

Estimated time:
Version:
0.7-pre
OS:
Any

Description

Thanks to Jima for reporting and supporting.

History

#1 Updated by johu over 13 years ago

  • Status changed from New to Resolved
  • % Done changed from 0 to 100

If we receive multiple CTCP requests in one PRIVMSG we now answer with one packed NOTICE containing all CTCP replies. This fixes a possible DoS Attack rendering Quassels IRC connection useless. Upgrading is strongly recommended. Thanks to Jima for reporting and supporting.

fixed with fdec4a88

Also available in: Atom PDF