A Debian bug report [1] noted that ZNC would segfault under certain conditions, such as clicking "traffic" in the webadmin pages or issuing the traffic command on the /znc shell. This has been corrected upstream [2]. This vulnerability was reported against 0.090 which is the version that Fedora provides. [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=584929 [2] http://znc.svn.sourceforge.net/viewvc/znc?view=rev&revision=2026
znc-0.090-2.fc13 has been submitted as an update for Fedora 13. http://admin.fedoraproject.org/updates/znc-0.090-2.fc13
znc-0.090-2.fc11 has been submitted as an update for Fedora 11. http://admin.fedoraproject.org/updates/znc-0.090-2.fc11
znc-0.090-2.el5 has been submitted as an update for Fedora EPEL 5. http://admin.fedoraproject.org/updates/znc-0.090-2.el5
znc-0.090-2.fc12 has been submitted as an update for Fedora 12. http://admin.fedoraproject.org/updates/znc-0.090-2.fc12
znc-0.090-2.el5 has been pushed to the Fedora EPEL 5 stable repository. If problems still persist, please make note of it in this bug report.
znc-0.090-2.fc13 has been pushed to the Fedora 13 stable repository. If problems still persist, please make note of it in this bug report.
znc-0.090-2.fc12 has been pushed to the Fedora 12 stable repository. If problems still persist, please make note of it in this bug report.
znc-0.090-2.fc11 has been pushed to the Fedora 11 stable repository. If problems still persist, please make note of it in this bug report.
This issue was assigned the name CVE-2010-2448.