Lucene search
RedHatRHSA-2009:0018HistoryJan 07, 2009 - 12:00 a.m.
(RHSA-2009:0018) Important: xterm security update
2009-01-0700:00:00
access.redhat.com
14
0.012 Low
EPSS
Percentile
85.1%
The xterm program is a terminal emulator for the X Window System.
A flaw was found in the xterm handling of Device Control Request Status
String (DECRQSS) escape sequences. An attacker could create a malicious
text file (or log entry, if unfiltered) that could run arbitrary commands
if read by a victim inside an xterm window. (CVE-2008-2383)
All xterm users are advised to upgrade to the updated package, which
contains a backported patch to resolve this issue. All running instances of
xterm must be restarted for the update to take effect.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 5 | src | xterm | < 215-5.el5_2.2 | xterm-215-5.el5_2.2.src.rpm |
| RedHat | 4 | i386 | xterm | < 192-8.el4_7.2 | xterm-192-8.el4_7.2.i386.rpm |
| RedHat | 5 | ia64 | xterm | < 215-5.el5_2.2 | xterm-215-5.el5_2.2.ia64.rpm |
| RedHat | 4 | x86_64 | xterm | < 192-8.el4_7.2 | xterm-192-8.el4_7.2.x86_64.rpm |
| RedHat | 4 | s390x | xterm | < 192-8.el4_7.2 | xterm-192-8.el4_7.2.s390x.rpm |
| RedHat | 4 | ia64 | xterm | < 192-8.el4_7.2 | xterm-192-8.el4_7.2.ia64.rpm |
| RedHat | 4 | ppc | xterm | < 192-8.el4_7.2 | xterm-192-8.el4_7.2.ppc.rpm |
| RedHat | 5 | s390x | xterm | < 215-5.el5_2.2 | xterm-215-5.el5_2.2.s390x.rpm |
| RedHat | 5 | ppc | xterm | < 215-5.el5_2.2 | xterm-215-5.el5_2.2.ppc.rpm |
| RedHat | 4 | s390 | xterm | < 192-8.el4_7.2 | xterm-192-8.el4_7.2.s390.rpm |
Related
nessus
nessus
RHEL 4 / 5 : xterm (RHSA-2009:0018)
2009-01-07 00:00:00
Debian DSA-1694-1 : xterm - design flaw
2009-01-06 00:00:00
Slackware 12.0 / 12.1 / 12.2 / current : xterm (SSA:2009-069-03)
2009-03-11 00:00:00
centos
centos
hanterm security update
2009-02-02 23:25:09
xterm security update
2009-01-07 22:24:51
openvas
openvas
CentOS Update for hanterm-xf CESA-2009:0019-01 centos2 i386
2011-08-09 00:00:00
Debian: Security Advisory (DSA-1694-1)
2009-01-07 00:00:00
CentOS Update for hanterm-xf CESA-2009:0019-01 centos2 i386
2011-08-09 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: kitty-0.29.1-1.fc38
2023-07-26 00:35:56
[SECURITY] Fedora 37 Update: kitty-0.26.5-6.fc37
2023-07-27 02:06:02
[SECURITY] Fedora 10 Update: xterm-238-1.fc10
2009-01-07 09:16:50
freebsd
freebsd
xterm -- DECRQSS remote command execution vulnerability
2008-12-28 00:00:00
osv
osv
xterm - remote code execution
2009-01-02 00:00:00
SwiftTerm Code Injection vulnerability
2023-07-14 21:58:43
debian
debian
[SECURITY] [DSA 1694-2] New xterm packages fix regression
2009-01-06 11:40:11
[SECURITY] [DSA 1694-1] New xterm packages fix remote code execution
2009-01-02 19:07:44
gentoo
gentoo
xterm: User-assisted arbitrary commands execution
2009-02-12 00:00:00
oraclelinux
oraclelinux
xterm security update
2009-01-07 00:00:00
veracode
veracode
CRLF Injection
2020-04-10 00:28:46
redhat
redhat
(RHSA-2009:0019) Important: hanterm-xf security update
2009-01-07 00:00:00
slackware
slackware
xterm
2009-03-10 10:26:52
nvd
nvd
CVE-2008-2383
2009-01-02 18:11:09
github
github
SwiftTerm Code Injection vulnerability
2023-07-14 21:58:43
ubuntu
ubuntu
xterm vulnerabilities
2009-01-06 00:00:00
debiancve
debiancve
CVE-2008-2383
2009-01-02 18:11:09
cve
cve
CVE-2008-2383
2009-01-02 18:11:09
prion
prion
Crlf injection
2009-01-02 18:11:00
ubuntucve
ubuntucve
CVE-2008-2383
2009-01-02 00:00:00
cvelist
cvelist
CVE-2008-2383
2009-01-02 00:00:00
securityvulns
securityvulns
About the security content of Security Update 2009-002 / Mac OS X v10.5.7
2009-05-14 00:00:00