Launchpad CVE tracker

CVE 2021-27135

xterm before Patch #366 allows remote attackers to execute arbitrary code or cause a denial of service (segmentation fault) via a crafted UTF-8 combining character sequence.

See the

CVE page on Mitre.org for more details.

References

MISC: https://www.openwall.c...
MISC: https://www.openwall.c...
MLIST: [oss-security] 2021021...
MLIST: [debian-lts-announce] ...
FEDORA: FEDORA-2021-e7a8e79fa8
CONFIRM: https://bugzilla.suse....
CONFIRM: https://github.com/Tho...
CONFIRM: https://invisible-isla...
MISC: https://access.redhat....
MISC: https://bugzilla.redha...
MISC: https://news.ycombinat...
FULLDISC: 20210520 CVE-2021-3153...
GENTOO: GLSA-202208-22

Launchpad.net

CVE 2021-27135

Related bugs

References