CVE-2016-7044

The unformat_24bit_color function in the format parsing code in Irssi before 0.8.20, when compiled with true-color enabled, allows remote attackers to cause a denial of service (heap corruption and crash) via an incomplete 24bit color code.

Date published : 2016-09-27

https://irssi.org/security/irssi_sa_2016.txt

http://www.debian.org/security/2016/dsa-3672