Updated rxvt-unicode package fixes security vulnerability: rxvt-unicode (aka urxvt) before 9.20 is vulnerable to a user-assisted arbitrary commands execution issue. This can be exploited by the unprocessed display of certain escape sequences in a crafted text file or program output. Arbitrary command sequences can be constructed using this, and unintentionally executed if used in conjunction with various other escape sequences (CVE-2014-3121).
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Mageia | 3 | noarch | rxvt-unicode | < 9.20-1 | rxvt-unicode-9.20-1.mga3 |
Mageia | 4 | noarch | rxvt-unicode | < 9.20-1 | rxvt-unicode-9.20-1.mga4 |