Vulnerability Database

300,445

Total vulnerabilities in the database

CVE-2018-7054

An issue was discovered in Irssi before 1.0.7 and 1.1.x before 1.1.1. There is a use-after-free when a server is disconnected during netsplits. NOTE: this issue exists because of an incomplete fix for CVE-2017-7191.

Published: Feb 15, 2018
Updated: Nov 9, 2025
CVE: CVE-2018-7054
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-416

Affected Software
References

Software	From	Fixed in
irssi / irssi	1.1.0	1.1.0.x
irssi / irssi	-	1.0.7
canonical / ubuntu_linux	16.04	16.04.x
canonical / ubuntu_linux	14.04	14.04.x
canonical / ubuntu_linux	17.10	17.10.x
debian / debian_linux	9.0	9.0.x

http://openwall.com/lists/oss-security/2018/02/15/1
https://irssi.org/security/irssi_sa_2018_02.txt
https://usn.ubuntu.com/3590-1/
https://usn.ubuntu.com/4046-1/
https://www.debian.org/security/2018/dsa-4162

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo