These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
CVE-2017-5196 is a denial-of-service vulnerability in Irssi that can be triggered remotely when the application processes strings that are not UTF-8. The published impact is an out-of-bounds read that can cause a crash. NVD rates the issue High with CVSS 3.0 vector AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H. The affected version range in the NVD record is Irssi 0.8.18 through versions before 0.8.21.
CVE-2017-5195 is a denial-of-service vulnerability in Irssi that can be triggered remotely by sending a crafted ANSI x8 color code. The flaw is an out-of-bounds read that can cause the client to crash. NVD lists the affected range as Irssi 0.8.17 through versions before 0.8.21, and the CVSS v3.0 vector indicates network access, no privileges, no user interaction, and high availability impact.
CVE-2016-7553 is a low-severity local information disclosure issue in Irssi's buf.pl script. Weak permissions on a scrollbuffer dump file created during upgrades could let a local user read private chat content. The supplied advisory and patch references point to a permissions fix rather than a code-execution problem.