This bug was fixed in the package xterm - 235-1ubuntu1.1
---------------
xterm (235-1ubuntu1.1) intrepid-security; urgency=low
* SECURITY UPDATE: command injection via dangerous terminal sequences
(CVE-2008-2383, LP: #311983).
- block DECRQSS, font shifting, X property changes, user-defined
keys. Thanks to Paul Szabo and Florian Weimer.
-- Kees Cook <[email protected]> Fri, 02 Jan 2009 11:28:08 -0800
** Changed in: xterm (Ubuntu)
Status: Fix Committed => Fix Released
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2008-2383
--
Window title, DECRQSS security
https://bugs.launchpad.net/bugs/311983
You received this bug notification because you are a member of Ubuntu
Bugs, which is a direct subscriber.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
