CVE-2022-45063

2022-11-1016:15:12

Debian Security Bug Tracker

security-tracker.debian.org

xterm

font ops

code execution

osc 50 response

vi mode

zsh

linux distributions

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.003 Low

EPSS

Percentile

71.2%

JSON

xterm before 375 allows code execution via font ops, e.g., because an OSC 50 response may have Ctrl-g and therefore lead to command execution within the vi line-editing mode of Zsh. NOTE: font ops are not allowed in the xterm default configurations of some Linux distributions.

OSVersionArchitecturePackageVersionFilename
Debian12allxterm< 375-1xterm_375-1_all.deb
Debian11allxterm<= 366-1+deb11u1xterm_366-1+deb11u1_all.deb
Debian10allxterm<= 344-1+deb10u2xterm_344-1+deb10u2_all.deb
Debian999allxterm< 375-1xterm_375-1_all.deb
Debian13allxterm< 375-1xterm_375-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	xterm	< 375-1	xterm_375-1_all.deb
Debian	11	all	xterm	<= 366-1+deb11u1	xterm_366-1+deb11u1_all.deb
Debian	10	all	xterm	<= 344-1+deb10u2	xterm_344-1+deb10u2_all.deb
Debian	999	all	xterm	< 375-1	xterm_375-1_all.deb
Debian	13	all	xterm	< 375-1	xterm_375-1_all.deb