socket.c in GNU Screen through 4.9.0, when installed setuid or setgid (the default on platforms such as Arch Linux and FreeBSD), allows local users to send a privileged SIGHUP signal to any PID, causing a denial of service or disruption of the target process.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Alpine | edge-main | noarch | screen | < 4.9.0-r3 | UNKNOWN |
Alpine | 3.15-main | noarch | screen | < 4.8.0-r6 | UNKNOWN |
Alpine | 3.16-main | noarch | screen | < 4.9.0-r1 | UNKNOWN |
Alpine | 3.17-main | noarch | screen | < 4.9.0-r1 | UNKNOWN |
Alpine | 3.18-main | noarch | screen | < 4.9.0-r3 | UNKNOWN |
Alpine | 3.19-main | noarch | screen | < 4.9.0-r3 | UNKNOWN |