Package: weechat-scripts Version: 20060821 Severity: minor Tags: security A vulnerability has been found in some IRC scripts. From CVE-2007-4398:
"Multiple CRLF injection vulnerabilities in the (1) now-playing.rb and (2) xmms.pl 1.1 scripts for weechat allow user-assisted remote attackers to execute arbitrary IRC commands via CRLF sequences in the name of the song in a .mp3 file." Severity minor since the attack vector is rather obscure. Please mention the CVE id in the changelog. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
