CVE-2015-6806

CVE-2015-6806 affects GNU Screen 4.3.1 and earlier; root cause is MScrollV recursion not properly limited in ansi.c, enabling denial of service via a large repeat-count escape sequence (stack consumption). Public advisories across distros (Ubuntu USN-3996-1, openSUSE/openSUSE-2019-1485, SUSE-SU-2...

CVE-2009-1215

CVE-2009-1215 concerns GNU screen. The connected docs confirm a race condition in GNU screen 4.0.3 that allows a local user to create or overwrite arbitrary files via a symlink attack on /tmp/screen-exchange. Impact is local privilege-related file manipulation (no remote vector stated in the sour...