CVE-2017-7483
N/A
N/A
Summary
Rxvt 2.7.10 is vulnerable to a denial of service attack by passing the value -2^31 inside a terminal escape code, which results in a non-invertible integer that eventually leads to a segfault due to an out of bounds read.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| The RXVT Project | rxvt | 2.7.10 | affected |
Weaknesses
- Integer overflow
ADP Enrichment
CVE Program Container
Additional References
- http://www.openwall.com/lists/oss-security/2017/05/01/15
- http://www.openwall.com/lists/oss-security/2017/05/01/18
- https://lists.debian.org/debian-lts-announce/2021/06/msg00012.html
References
- http://www.openwall.com/lists/oss-security/2017/05/01/15
- http://www.openwall.com/lists/oss-security/2017/05/01/18
- https://lists.debian.org/debian-lts-announce/2021/06/msg00012.html
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.