On Tue, May 02, 2017 at 10:08:08PM +0200, Salvatore Bonaccorso wrote:
> Source: rxvt
> Version: 1:2.7.10-6
> Severity: important
> Tags: security upstream patch
>
> Hi,
>
> the following vulnerability was published for rxvt.
>
> CVE-2017-7483[0]:
> | Rxvt 2.7.10 is vulnerable to a denial of service attack by passing the
> | value -2^31 inside a terminal escape code, which results in a
> | non-invertible integer that eventually leads to a segfault due to an
> | out of bounds read.
What's the status? This is unfixed for several months now.
Cheers,
Moritz
