Ubuntu: Security Advisory (USN-8078-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 22.04 LTS : Zutty vulnerability (USN-8078-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-8078-1 advisory. Carter Sande discovered that Zutty did not correctly echo invalid input to the console on DECRQSS. An attacker could possibly use this issue to execute arbitrary...

USN-8078-1: Zutty vulnerability

Carter Sande discovered that Zutty did not correctly echo invalid input to the console on DECRQSS. An attacker could possibly use this issue to execute arbitrary commands...

USN-8078-1 zutty vulnerability

Carter Sande discovered that Zutty did not correctly echo invalid input to the console on DECRQSS. An attacker could possibly use this issue to execute arbitrary commands...

EUVD-2022-44379

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2022-41138

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Zutty before 0.13, DECRQSS in text written to the terminal can achieve arbitrary code execution. CVE-2022-41138 Note that Nessus relies on the presence of th...

CVE-2022-41138

In Zutty before 0.13, DECRQSS in text written to the terminal can achieve arbitrary code execution...

Zutty: Arbitrary Code Execution

Background Zutty is an X terminal emulator rendering through OpenGL ES Compute Shaders. Description Zutty does not correctly handle invalid DECRQSS commands, which can be exploited to run arbitrary commands in the terminal. Impact Untrusted text written to the Zutty terminal can achieve arbitrary...

GLSA-202209-25 : Zutty: Arbitrary Code Execution

The remote host is affected by the vulnerability described in GLSA-202209-25 Zutty: Arbitrary Code Execution - In Zutty before 0.13, DECRQSS in text written to the terminal can achieve arbitrary code execution. CVE-2022-41138 Note that Nessus has not tested for this issue but has instead relied...

CVE-2022-41138

In Zutty before 0.13, DECRQSS in text written to the terminal can achieve arbitrary code execution...

CVE-2022-41138

In Zutty before 0.13, DECRQSS in text written to the terminal can achieve arbitrary code execution...

DEBIAN-CVE-2022-41138

In Zutty before 0.13, DECRQSS in text written to the terminal can achieve arbitrary code execution...

Code injection

In Zutty before 0.13, DECRQSS in text written to the terminal can achieve arbitrary code execution...

UBUNTU-CVE-2022-41138

In Zutty before 0.13, DECRQSS in text written to the terminal can achieve arbitrary code execution...

CVE-2022-41138

In Zutty before 0.13, DECRQSS in text written to the terminal can achieve arbitrary code execution...

CVE-2022-41138

In Zutty before 0.13, DECRQSS in text written to the terminal can achieve arbitrary code execution...

CVE-2022-41138

In Zutty before 0.13, DECRQSS in text written to the terminal can achieve arbitrary code execution...

CVE-2022-41138

In Zutty before 0.13, DECRQSS in text written to the terminal can achieve arbitrary code execution...

CVE-2022-41138

CVE-2022-41138 (Zutty) affects Zutty prior to 0.13, where DECRQSS sequences written to the terminal can lead to arbitrary code execution. The CVE entry notes a CRITICAL base score (9.8) with network-based, no-auth, no-user-interaction exploitation and high impact across confidentiality, integrity...

Zutty 安全漏洞

Zutty is an X terminal rendering emulator via OpenGL ES Compute Shaders by Tom Szilagyi, a solo developer. A security vulnerability exists in Zutty versions prior to 0.13, which stems from a DECRQSS write terminal in text to enable arbitrary code execution...