{"id":"CVE-2017-5196","details":"Irssi 0.8.18 before 0.8.21 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via vectors involving strings that are not UTF8.","modified":"2026-03-20T11:20:04.694498Z","published":"2017-03-03T15:59:00.790Z","related":["MGASA-2017-0018","openSUSE-SU-2017:0093-1","openSUSE-SU-2017:0094-1","openSUSE-SU-2024:10865-1"],"references":[{"type":"ADVISORY","url":"http://www.openwall.com/lists/oss-security/2017/01/06/1"},{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/95310"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/201701-45"},{"type":"FIX","url":"https://irssi.org/security/irssi_sa_2017_01.txt"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/irssi/irssi","events":[{"introduced":"b91f3c3025dc5cace2c14cb5b2da005400b5cd6a"},{"fixed":"7cac354161a8914712264408347a9a2882aab22f"}],"database_specific":{"versions":[{"introduced":"0.8.18"},{"fixed":"0.8.21"}]}}],"versions":["0.8.18","0.8.19","0.8.20"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2017-5196.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}