xterm-215-5AXS3.2
エラータID: AXSA:2009-04:01
Release date:
Friday, January 23, 2009 - 12:07
Subject:
xterm-215-5AXS3.2
Affected Channels:
Asianux Server 3 for x86_64
Asianux Server 3 for ppc
Asianux Server 3 for ia64
Asianux Server 3 for x86
Severity:
High
Description:
The xterm program is a terminal emulator for the X Window System. It provides DEC VT102 and Tektronix 4014 compatible terminals for programs that can't use the window system directly.
Bug fixed:
CVE-2008-2383
CRLF injection vulnerability in xterm allows user-assisted attackers to execute arbitrary commands via LF (aka n) characters surrounding a command name within a Device Control Request Status String (DECRQSS) escape sequence in a text file, a related issue to CVE-2003-0063 and CVE-2003-0071.
Solution:
Update packages
CVEs:
CVE-2008-2383
CRLF injection vulnerability in xterm allows user-assisted attackers to execute arbitrary commands via LF (aka \n) characters surrounding a command name within a Device Control Request Status String (DECRQSS) escape sequence in a text file, a related issue to CVE-2003-0063 and CVE-2003-0071.
CRLF injection vulnerability in xterm allows user-assisted attackers to execute arbitrary commands via LF (aka \n) characters surrounding a command name within a Device Control Request Status String (DECRQSS) escape sequence in a text file, a related issue to CVE-2003-0063 and CVE-2003-0071.
Additional Info:
N/A
Download:
SRPMS
- xterm-215-5AXS3.2.src.rpm
MD5: ed141212b53e1019ad901c66d09e822d
SHA-256: 3eb41944877d32fb39e1865ff13bdd01cbe5b52abd8c7aa45b8834f9308fcf65
Size: 863.83 kB
Asianux Server 3 for x86
- xterm-215-5AXS3.2.i386.rpm
MD5: 3fddb064c5bdc7d445a158264eec991f
SHA-256: c60cf468e848e171f38ccac3421a7c0a041ec62f6a27bb01ab4c0e5ef559010f
Size: 405.12 kB
Asianux Server 3 for x86_64
- xterm-215-5AXS3.2.x86_64.rpm
MD5: 7bedfb1ac1eaebf3290821dac0540df6
SHA-256: 92cb436c73f3be43a4829bc3f3da9392bdf084a9bf9dbd79cecd2773359318aa
Size: 409.91 kB
日本語