xterm (353-1ubuntu1.20.10.2) groovy-security; urgency=medium * SECURITY UPDATE: crash when handling crafted unicode content - debian/patches/CVE-2021-27135.patch: correct upper-limit for selection buffer, accounting for combining characters in button.c. - debian/patches/CVE-2021-27135-2.patch: check realloc return code, add some casts in button.c. - CVE-2021-27135 -- Marc Deslauriers <email address hidden> Mon, 22 Feb 2021 12:59:13 -0500