rpm package
suse/rxvt-unicode&distro=SUSE Package Hub 15 SP3
pkg:rpm/suse/rxvt-unicode&distro=SUSE%20Package%20Hub%2015%20SP3
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-33477 | — | < 9.26-bp154.2.3.1 | 9.26-bp154.2.3.1 | May 20, 2021 | rxvt-unicode 9.22, rxvt 2.7.10, mrxvt 0.5.4, and Eterm 0.9.7 allow (potentially remote) code execution because of improper handling of certain escape sequences (ESC G Q). A response is terminated by a newline. | ||
| CVE-2008-1142 | — | < 9.26-bp154.2.3.1 | 9.26-bp154.2.3.1 | Apr 7, 2008 | rxvt 2.6.4 opens a terminal window on :0 if the DISPLAY environment variable is not set, which might allow local users to hijack X11 connections. NOTE: it was later reported that rxvt-unicode, mrxvt, aterm, multi-aterm, and wterm are also affected. NOTE: realistic attack scenar |
- CVE-2021-33477May 20, 2021affected < 9.26-bp154.2.3.1fixed 9.26-bp154.2.3.1
rxvt-unicode 9.22, rxvt 2.7.10, mrxvt 0.5.4, and Eterm 0.9.7 allow (potentially remote) code execution because of improper handling of certain escape sequences (ESC G Q). A response is terminated by a newline.
- CVE-2008-1142Apr 7, 2008affected < 9.26-bp154.2.3.1fixed 9.26-bp154.2.3.1
rxvt 2.6.4 opens a terminal window on :0 if the DISPLAY environment variable is not set, which might allow local users to hijack X11 connections. NOTE: it was later reported that rxvt-unicode, mrxvt, aterm, multi-aterm, and wterm are also affected. NOTE: realistic attack scenar