vulnerability
Arch Linux: Denial of service (CVE-2020-9759)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:M/Au:N/C:C/I:C/A:C) | Mar 23, 2020 | Jul 11, 2025 | Nov 27, 2025 |
Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
Mar 23, 2020
Added
Jul 11, 2025
Modified
Nov 27, 2025
Description
A heap-based out-of-bounds read has been found in Weechat before 2.7.1, when receiving a malformed IRC message 352 (WHO). It could lead to a off-by-one read resulting in denial of service (crash).
Solution
arch-linux-upgrade-latest
References
- CVE-2020-9759
- https://attackerkb.com/topics/CVE-2020-9759
- URL-https://blog.recurity-labs.com/2021-02-03/webOS_Pt1.html
- URL-https://lists.debian.org/debian-lts-announce/2021/09/msg00018.html
- URL-https://security.archlinux.org/ASA-202002-12
- URL-https://weechat.org/news/113/20200220-Version-2.7.1-security-release/
- CWE-494
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.