Unrated severityNVD Advisory· Published Sep 23, 2022· Updated Jun 1, 2025
CVE-2022-41322
CVE-2022-41322
Description
In Kitty before 0.26.2, insufficient validation in the desktop notification escape sequence can lead to arbitrary code execution. The user must display attacker-controlled content in the terminal, then click on a notification popup.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Kitty/Kittydescription
- Range: <0.26.2
Patches
Vulnerability mechanics
References
7- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/47RK7MBSVY5BWDUTYMJUFPBAYFSWMTOI/mitrevendor-advisoryx_refsource_FEDORA
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6RRNAPU33PHEH64P77YL3AJO6CTZGHTX/mitrevendor-advisoryx_refsource_FEDORA
- security.gentoo.org/glsa/202209-22mitrevendor-advisoryx_refsource_GENTOO
- bugs.gentoo.org/868543mitrex_refsource_MISC
- github.com/kovidgoyal/kitty/commit/f05783e64d5fa62e1aed603e8d69aced5e49824fmitrex_refsource_MISC
- github.com/kovidgoyal/kitty/compare/v0.26.1...v0.26.2mitrex_refsource_MISC
- sw.kovidgoyal.net/kitty/changelog/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.