Rxvt is vulnerable to denial of service. An attacker is able to crash the application by passing the value -2^31
inside a terminal escape code which would result in a non-invertible integer that eventually leads to a segfault due to an out of bounds read.
CPE | Name | Operator | Version |
---|---|---|---|
rxvt:stretch | eq | 1:2.7.10-7+b1 |