aru Posted April 1, 2003 Report Share Posted April 1, 2003 MandrakeSoft Security Advisory MDKSA-2003:040 : Eterm April 1st, 2003 Updated Eterm packages fix escape sequence insecurities Digital Defense Inc. released a paper detailing insecurities in various terminal emulators, including Eterm. Many of the features supported by these programs can be abused when untrusted data is displayed on the screen. This abuse can be anything from garbage data being displayed to the screen or a system compromise. These issues are corrected in Eterm 0.9.2, which is already included in Mandrake Linux 9.1. The released versions of Mandrake GNU/Linux affected are: Full information about this advisory, including the updated packages, is available at: www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2003:040 Other references: http://cve.mitre.org/cgi-bin/cvename.cgi?n...e=CAN-2003-0021 http://cve.mitre.org/cgi-bin/cvename.cgi?n...e=CAN-2003-0068 http://marc.theaimsgroup.com/?l=bugtraq&m=...12710031920&w=2 Posted automatically by aru (mdksec2mub v0.0.5) Link to comment Share on other sites More sharing options...
Recommended Posts