Debian Long Term Support / LTS Security Information / 2021 / Security Information -- DLA-2558-2 xterm

Debian Security Advisory

DLA-2558-2 xterm -- LTS security update

Date Reported:

21 Mar 2021

Affected Packages:

xterm

Vulnerable:

Yes

Security database references:

In the Debian bugtracking system: Bug 984615.

More information:

DLA 2558-2 backported a part of the upstream patch which fails to deal with the realloc failures in Debian stretch. This update reverts that part of the patch since it's not really needed and just focuses on fixing CVE-2021-27135.

For Debian 9 stretch, this problem has been fixed in version 327-2+deb9u2.

We recommend that you upgrade your xterm packages.

For the detailed security status of xterm please refer to its security tracker page at: https://security-tracker.debian.org/tracker/xterm

Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS