Unrated severityNVD Advisory· Published May 21, 2014· Updated Jun 16, 2026
CVE-2011-2198
CVE-2011-2198
Description
The "insert-blank-characters" capability in caps.c in gnome-terminal (vte) before 0.28.1 allows remote authenticated users to cause a denial of service (CPU and memory consumption and crash) via a crafted file, as demonstrated by a file containing the string "\033[100000000000000000@".
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5cpe:2.3:a:gnome:gnome-terminal:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:gnome:gnome-terminal:*:*:*:*:*:*:*:*range: <=0.28.0
- (no CPE)range: < 0.28.1
- cpe:2.3:o:oracle:solaris:11.2:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
8- bugzilla.gnome.org/show_bug.cginvdIssue TrackingPatchVendor Advisory
- git.gnome.org/browse/vte/commit/nvdExploitPatch
- lists.opensuse.org/opensuse-updates/2012-08/msg00001.htmlnvdThird Party Advisory
- www.openwall.com/lists/oss-security/2011/06/09/3nvdThird Party Advisory
- www.openwall.com/lists/oss-security/2011/06/13/10nvdThird Party Advisory
- www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.htmlnvdThird Party Advisory
- bugs.debian.org/cgi-bin/bugreport.cginvdThird Party Advisory
- bugzilla.redhat.com/show_bug.cginvdIssue TrackingThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.