A remotely triggerable crash flaw was found in ircd-ratbox-2.x. The bug has to do with server capability negotiation. A malformed request will trigger a crash due to invalid assumptions. Details: http://rabbit.dereferenced.org/~nenolod/ASA-2012-12-31.txt http://tech.slashdot.org/story/12/12/31/2241229/efnet-paralyzed-by-vulnerability
Created ircd-ratbox tracking bugs for this issue Affects: fedora-all [bug 891034] Affects: epel-5 [bug 891035]
This issue was originally disclosed via the following email: http://seclists.org/oss-sec/2012/q4/544
This issue was assigned CVE-2012-6084 via: http://seclists.org/oss-sec/2012/q4/546
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.