xterm through Patch 370, when Sixel support is enabled, allows malicious users to trigger a buffer overflow in set_sixel in graphics_sixel.c via crafted text.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
invisible-island xterm |
||
debian debian linux 9.0 |
||
fedoraproject fedora 34 |
||
fedoraproject fedora 35 |