Lucene search

K
cloudlinuxCloudLinuxCLSA-2022:1669236294
HistoryNov 23, 2022 - 8:44 p.m.

xterm: Fix of CVE-2022-45063

2022-11-2320:44:54
repo.cloudlinux.com
29
xterm
fix
error recovery
bitmap font
null pointer checks
x_strcasecmp
x_strncasecmp
missing font
security update

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.003 Low

EPSS

Percentile

71.2%

  • CVE-2022-45063: improve error recovery when setting a bitmap font for the VT100 window
  • Add NULL pointer checks in x_strcasecmp() and x_strncasecmp() to help with error
    recovery for a missing font
OSVersionArchitecturePackageVersionFilename
Centos6x86_64xterm< 253xterm-253-2.el6.tuxcare.els2.src.rpm

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.003 Low

EPSS

Percentile

71.2%