VYPR

rpm package

opensuse/xterm&distro=openSUSE Leap 15.4

pkg:rpm/opensuse/xterm&distro=openSUSE%20Leap%2015.4

Vulnerabilities (3)

  • CVE-2023-40359Aug 14, 2023
    affected < 330-150200.11.12.1fixed 330-150200.11.12.1

    xterm before 380 supports ReGIS reporting for character-set names even if they have unexpected characters (i.e., neither alphanumeric nor underscore), aka a pointer/overflow issue. This can only occur for xterm installations that are configured at compile time to use a certain ex

  • CVE-2022-45063CriNov 10, 2022
    affected < 330-150200.11.9.1fixed 330-150200.11.9.1

    xterm before 375 allows code execution via font ops, e.g., because an OSC 50 response may have Ctrl-g and therefore lead to command execution within the vi line-editing mode of Zsh. NOTE: font ops are not allowed in the xterm default configurations of some Linux distributions.

  • CVE-2022-24130Jan 31, 2022
    affected < 330-150200.11.6.1fixed 330-150200.11.6.1

    xterm through Patch 370, when Sixel support is enabled, allows attackers to trigger a buffer overflow in set_sixel in graphics_sixel.c via crafted text.