[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 2682-1] mrxvt security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -----------------------------------------------------------------------
Debian LTS Advisory DLA-2682-1              debian-lts@lists.debian.org
https://www.debian.org/lts/security/                      Utkarsh Gupta
June 09, 2021                               https://wiki.debian.org/LTS
- -----------------------------------------------------------------------

Package        : mrxvt
Version        : 0.5.4-2+deb9u1
CVE ID         : CVE-2021-33477

mrxvt, lightweight multi-tabbed X terminal emulator, allowed
(potentially remote) code execution because of improper handling
of certain escape sequences (ESC G Q).

For Debian 9 stretch, this problem has been fixed in version
0.5.4-2+deb9u1.

We recommend that you upgrade your mrxvt packages.

For the detailed security status of mrxvt please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/mrxvt

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=xPrr
-----END PGP SIGNATURE-----


Reply to: