rpm package
suse/screen&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP3
pkg:rpm/suse/screen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-26937 | — | < 4.0.4-23.6.1 | 4.0.4-23.6.1 | Feb 9, 2021 | encoding.c in GNU Screen through 4.8.0 allows remote attackers to cause a denial of service (invalid write access and application crash) or possibly have unspecified other impact via a crafted UTF-8 character sequence. | ||
| CVE-2015-6806 | — | < 4.0.4-23.3.3 | 4.0.4-23.3.3 | Sep 28, 2015 | The MScrollV function in ansi.c in GNU screen 4.3.1 and earlier does not properly limit recursion, which allows remote attackers to cause a denial of service (stack consumption) via an escape sequence with a large repeat count value. |
- CVE-2021-26937Feb 9, 2021affected < 4.0.4-23.6.1fixed 4.0.4-23.6.1
encoding.c in GNU Screen through 4.8.0 allows remote attackers to cause a denial of service (invalid write access and application crash) or possibly have unspecified other impact via a crafted UTF-8 character sequence.
- CVE-2015-6806Sep 28, 2015affected < 4.0.4-23.3.3fixed 4.0.4-23.3.3
The MScrollV function in ansi.c in GNU screen 4.3.1 and earlier does not properly limit recursion, which allows remote attackers to cause a denial of service (stack consumption) via an escape sequence with a large repeat count value.