GHSA-cwvr-vg72-6p6j

Опубликовано: 14 авг. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

xterm before 380 supports ReGIS reporting for character-set names even if they have unexpected characters (i.e., neither alphanumeric nor underscore), aka a pointer/overflow issue.

Ссылки

EPSS

Процентиль: 31%

0.00116

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2023-40359

Связанные уязвимости

CVE-2023-40359

CVSS3: 9.8

ubuntu

около 2 лет назад

xterm before 380 supports ReGIS reporting for character-set names even if they have unexpected characters (i.e., neither alphanumeric nor underscore), aka a pointer/overflow issue. This can only occur for xterm installations that are configured at compile time to use a certain experimental feature.

CVE-2023-40359

CVSS3: 3.3

redhat

около 2 лет назад

CVE-2023-40359

CVSS3: 9.8

nvd

около 2 лет назад

CVE-2023-40359

CVSS3: 9.8

msrc

около 2 лет назад

xterm before 380 supports ReGIS reporting for character-set names even if they have unexpected characters (i.e. neither alphanumeric nor underscore) aka a pointer/overflow issue. This can only occur for xterm installations that are configured at compile time to use a certain experimental feature.

CVE-2023-40359

CVSS3: 9.8

debian

около 2 лет назад

xterm before 380 supports ReGIS reporting for character-set names even ...

EPSS

Процентиль: 31%

0.00116

Низкий

9.8 Critical

CVSS3

CVE ID

CVE-2023-40359