VYPR

rpm package

suse/rxvt-unicode&distro=SUSE Package Hub 15 SP3

pkg:rpm/suse/rxvt-unicode&distro=SUSE%20Package%20Hub%2015%20SP3

Vulnerabilities (2)

  • CVE-2021-33477May 20, 2021
    affected < 9.26-bp154.2.3.1fixed 9.26-bp154.2.3.1

    rxvt-unicode 9.22, rxvt 2.7.10, mrxvt 0.5.4, and Eterm 0.9.7 allow (potentially remote) code execution because of improper handling of certain escape sequences (ESC G Q). A response is terminated by a newline.

  • CVE-2008-1142Apr 7, 2008
    affected < 9.26-bp154.2.3.1fixed 9.26-bp154.2.3.1

    rxvt 2.6.4 opens a terminal window on :0 if the DISPLAY environment variable is not set, which might allow local users to hijack X11 connections. NOTE: it was later reported that rxvt-unicode, mrxvt, aterm, multi-aterm, and wterm are also affected. NOTE: realistic attack scenar