Upstream information

CVE-2014-8483 at MITRE

Description

The blowfishECB function in core/cipher.cpp in Quassel IRC 0.10.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a malformed string.

SUSE information

Overall state of this security issue: Does not affect SUSE products

This issue is currently rated as having low severity.

CVSS v2 Scores
  National Vulnerability Database SUSE
Base Score 5 1.2
Vector AV:N/AC:L/Au:N/C:N/I:N/A:P AV:L/AC:H/Au:N/C:P/I:N/A:N
Access Vector Network Local
Access Complexity Low High
Authentication None None
Confidentiality Impact None Partial
Integrity Impact None None
Availability Impact Partial None
SUSE Bugzilla entry: 902670

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
openSUSE 13.1
  • kdebase4-runtime >= 4.11.5-482.6
  • kdebase4-runtime-branding-upstream >= 4.11.5-482.6
  • kdebase4-runtime-debuginfo >= 4.11.5-482.6
  • kdebase4-runtime-debugsource >= 4.11.5-482.6
  • kdebase4-runtime-devel >= 4.11.5-482.6
  • kdelibs4 >= 4.11.5-488.2
  • kdelibs4-apidocs >= 4.11.5-488.3
  • kdelibs4-branding-upstream >= 4.11.5-488.2
  • kdelibs4-core >= 4.11.5-488.2
  • kdelibs4-core-debuginfo >= 4.11.5-488.2
  • kdelibs4-debuginfo >= 4.11.5-488.2
  • kdelibs4-debugsource >= 4.11.5-488.2
  • kdelibs4-doc >= 4.11.5-488.2
  • kdelibs4-doc-debuginfo >= 4.11.5-488.2
  • konversation >= 1.5.1-3.4.3
  • konversation-debuginfo >= 1.5.1-3.4.3
  • konversation-debugsource >= 1.5.1-3.4.3
  • konversation-lang >= 1.5.1-3.4.3
  • kwebkitpart >= 1.3.3-2.4.1
  • kwebkitpart-debuginfo >= 1.3.3-2.4.1
  • kwebkitpart-debugsource >= 1.3.3-2.4.1
  • kwebkitpart-lang >= 1.3.3-2.4.1
  • libkde4 >= 4.11.5-488.2
  • libkde4-32bit >= 4.11.5-488.2
  • libkde4-debuginfo >= 4.11.5-488.2
  • libkde4-debuginfo-32bit >= 4.11.5-488.2
  • libkde4-devel >= 4.11.5-488.2
  • libkdecore4 >= 4.11.5-488.2
  • libkdecore4-32bit >= 4.11.5-488.2
  • libkdecore4-debuginfo >= 4.11.5-488.2
  • libkdecore4-debuginfo-32bit >= 4.11.5-488.2
  • libkdecore4-devel >= 4.11.5-488.2
  • libkdecore4-devel-debuginfo >= 4.11.5-488.2
  • libksuseinstall-devel >= 4.11.5-488.2
  • libksuseinstall1 >= 4.11.5-488.2
  • libksuseinstall1-32bit >= 4.11.5-488.2
  • libksuseinstall1-debuginfo >= 4.11.5-488.2
  • libksuseinstall1-debuginfo-32bit >= 4.11.5-488.2
  • libqt4 >= 4.8.5-5.17.1
  • libqt4-32bit >= 4.8.5-5.17.1
  • libqt4-debuginfo >= 4.8.5-5.17.1
  • libqt4-debuginfo-32bit >= 4.8.5-5.17.1
  • libqt4-debugsource >= 4.8.5-5.17.1
  • libqt4-devel >= 4.8.5-5.17.1
  • libqt4-devel-debuginfo >= 4.8.5-5.17.1
  • libqt4-devel-doc >= 4.8.5-5.17.2
  • libqt4-devel-doc-data >= 4.8.5-5.17.2
  • libqt4-devel-doc-debuginfo >= 4.8.5-5.17.2
  • libqt4-devel-doc-debugsource >= 4.8.5-5.17.2
  • libqt4-linguist >= 4.8.5-5.17.1
  • libqt4-linguist-debuginfo >= 4.8.5-5.17.1
  • libqt4-private-headers-devel >= 4.8.5-5.17.1
  • libqt4-qt3support >= 4.8.5-5.17.1
  • libqt4-qt3support-32bit >= 4.8.5-5.17.1
  • libqt4-qt3support-debuginfo >= 4.8.5-5.17.1
  • libqt4-qt3support-debuginfo-32bit >= 4.8.5-5.17.1
  • libqt4-sql >= 4.8.5-5.17.1
  • libqt4-sql-32bit >= 4.8.5-5.17.1
  • libqt4-sql-debuginfo >= 4.8.5-5.17.1
  • libqt4-sql-debuginfo-32bit >= 4.8.5-5.17.1
  • libqt4-sql-mysql >= 4.8.5-5.17.1
  • libqt4-sql-mysql-32bit >= 4.8.5-5.17.1
  • libqt4-sql-mysql-debuginfo >= 4.8.5-5.17.1
  • libqt4-sql-mysql-debuginfo-32bit >= 4.8.5-5.17.1
  • libqt4-sql-plugins >= 4.8.5-5.17.1
  • libqt4-sql-plugins-debugsource >= 4.8.5-5.17.1
  • libqt4-sql-postgresql >= 4.8.5-5.17.1
  • libqt4-sql-postgresql-32bit >= 4.8.5-5.17.1
  • libqt4-sql-postgresql-debuginfo >= 4.8.5-5.17.1
  • libqt4-sql-postgresql-debuginfo-32bit >= 4.8.5-5.17.1
  • libqt4-sql-sqlite >= 4.8.5-5.17.1
  • libqt4-sql-sqlite-32bit >= 4.8.5-5.17.1
  • libqt4-sql-sqlite-debuginfo >= 4.8.5-5.17.1
  • libqt4-sql-sqlite-debuginfo-32bit >= 4.8.5-5.17.1
  • libqt4-sql-unixODBC >= 4.8.5-5.17.1
  • libqt4-sql-unixODBC-32bit >= 4.8.5-5.17.1
  • libqt4-sql-unixODBC-debuginfo >= 4.8.5-5.17.1
  • libqt4-sql-unixODBC-debuginfo-32bit >= 4.8.5-5.17.1
  • libqt4-x11 >= 4.8.5-5.17.1
  • libqt4-x11-32bit >= 4.8.5-5.17.1
  • libqt4-x11-debuginfo >= 4.8.5-5.17.1
  • libqt4-x11-debuginfo-32bit >= 4.8.5-5.17.1
  • plasma-theme-oxygen >= 4.11.5-482.6
  • qt4-x11-tools >= 4.8.5-5.17.2
  • qt4-x11-tools-debuginfo >= 4.8.5-5.17.2
  • quassel >= 0.9.2-16.1
  • quassel-base >= 0.9.2-16.1
  • quassel-client >= 0.9.2-16.1
  • quassel-client-debuginfo >= 0.9.2-16.1
  • quassel-core >= 0.9.2-16.1
  • quassel-core-debuginfo >= 0.9.2-16.1
  • quassel-debugsource >= 0.9.2-16.1
  • quassel-mono >= 0.9.2-16.1
  • quassel-mono-debuginfo >= 0.9.2-16.1
Patchnames:
openSUSE-2014-638
openSUSE-2015-251
openSUSE Leap 15.0
  • konversation >= 1.7.4-lp150.2.1
  • konversation-lang >= 1.7.4-lp150.2.1
Patchnames:
openSUSE Leap 15.0 GA konversation
openSUSE Leap 42.1
  • konversation >= 1.6-2.9
  • konversation-lang >= 1.6-2.9
Patchnames:
openSUSE Leap 42.1 GA konversation
openSUSE Leap 42.2
  • konversation >= 1.6.2-1.17
  • konversation-lang >= 1.6.2-1.17
Patchnames:
openSUSE Leap 42.2 GA konversation
openSUSE Leap 42.3
  • konversation >= 1.7.2-1.13
  • konversation-lang >= 1.7.2-1.13
Patchnames:
openSUSE Leap 42.3 GA konversation
openSUSE Tumbleweed
  • konversation >= 1.6.2-1.3
  • konversation-lang >= 1.6.2-1.3
Patchnames:
openSUSE Tumbleweed GA konversation