← voltar
CVE-2015-6806

CVE-2015-6806

EPSS 4.1%
The MScrollV function in ansi.c in GNU screen 4.3.1 and earlier does not properly limit recursion, which allows remote attackers to cause a denial of service (stack consumption) via an escape sequence with a large repeat count value.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://git.savannah.gnu.org/cgit/screen.git/commit/?id=b7484c224738247b510ed0d268cd577076958f1bhttp://lists.opensuse.org/opensuse-security-announce/2019-06/msg00001.htmlhttps://savannah.gnu.org/bugs/?45713https://usn.ubuntu.com/3996-1/http://www.debian.org/security/2015/dsa-3352http://www.openwall.com/lists/oss-security/2015/09/01/1http://www.openwall.com/lists/oss-security/2015/09/03/11http://www.openwall.com/lists/oss-security/2015/09/03/4