From 94bd3ab3f3c7fbbd0b22e82481fb45ac48f18933 Mon Sep 17 00:00:00 2001
From: Ailin Nemui <ailin@z30a.localdomain>
Date: Wed, 5 Jul 2017 22:38:05 +0200
Subject: Release Irssi 1.0.4

---
 _posts/2017-07-07-irssi-1.0.4-released.markdown | 41 +++++++++++++++++++++++++
 1 file changed, 41 insertions(+)
 create mode 100644 _posts/2017-07-07-irssi-1.0.4-released.markdown

(limited to '_posts/2017-07-07-irssi-1.0.4-released.markdown')

diff --git a/_posts/2017-07-07-irssi-1.0.4-released.markdown b/_posts/2017-07-07-irssi-1.0.4-released.markdown
new file mode 100644
index 0000000..b12be88
--- /dev/null
+++ b/_posts/2017-07-07-irssi-1.0.4-released.markdown
@@ -0,0 +1,41 @@
+---
+layout: post
+title: "Irssi 1.0.4 Released"
+---
+
+Irssi 1.0.4 has been released. This release fixes two remote crash
+issues in Irssi as well as a few bugs, correcting a mistake that
+was introduced in 1.0.3 while parsing some time-related
+settings. There are no new features. **All Irssi users should upgrade
+to this version**. See the
+[NEWS](//raw.githubusercontent.com/irssi/irssi/1.0.4/NEWS) for
+details.
+
+Our bug reporter Brian 'geeknik' Carpenter writes:
+
+> 34 days after reading [Fuzzing Irssi]({% post_url
+2017-05-12-fuzzing-irssi %}), my AFL instance was finally able to
+trigger a null pointer dereference in irssi 1.0.2. [...] Hopefully this one isn't fixed yet.
+>
+> 35 days after reading Fuzzing Irssi, my AFL
+instance triggered a heap-use-after-free in irssi 1.0.2. Compiled on Debian
+8 x64 following the instructions and patches of the referenced article. (;
+
+For more information refer to the [security advisory](/security/irssi_sa_2017_07.txt).
+
+Thanks, Brian!
+
+This release can be downloaded from [our releases
+page](https://github.com/irssi/irssi/releases). Binary test packages
+for various Linux distributions are automatically generated by the
+[openSUSE Build Service](https://build.opensuse.org/) and are
+available for download in the
+[irssi-test](https://software.opensuse.org/download.html?project=home:ailin_nemui:irssi-test;package=irssi)
+repository.
+
+Please check with your distro whether they provide officially updated
+packages.
+
+We currently do not have any alternate advice.
+
+The Irssi Team.
-- 
cgit v1.2.3