CVE-2023-40359

Опубликовано: 14 авг. 2023

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS3: 9.8

Описание

xterm before 380 supports ReGIS reporting for character-set names even if they have unexpected characters (i.e., neither alphanumeric nor underscore), aka a pointer/overflow issue. This can only occur for xterm installations that are configured at compile time to use a certain experimental feature.

Релиз	Статус	Примечание
bionic	ignored	end of standard support
devel	not-affected	384-1ubuntu1
esm-apps/bionic	needs-triage
esm-apps/focal	needs-triage
esm-apps/jammy	needs-triage
esm-apps/noble	not-affected	384-1ubuntu1
esm-infra/xenial	needs-triage
focal	ignored	end of standard support, was needs-triage
jammy	needs-triage
lunar	ignored	end of life, was needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 31%

0.00116

Низкий

9.8 Critical

CVSS3

Связанные уязвимости

CVE-2023-40359

CVSS3: 3.3

redhat

около 2 лет назад

CVE-2023-40359

CVSS3: 9.8

nvd

около 2 лет назад

CVE-2023-40359

CVSS3: 9.8

msrc

около 2 лет назад

xterm before 380 supports ReGIS reporting for character-set names even if they have unexpected characters (i.e. neither alphanumeric nor underscore) aka a pointer/overflow issue. This can only occur for xterm installations that are configured at compile time to use a certain experimental feature.

CVE-2023-40359

CVSS3: 9.8

debian

около 2 лет назад

xterm before 380 supports ReGIS reporting for character-set names even ...

SUSE-SU-2023:4438-1

suse-cvrf

почти 2 года назад

Security update for xterm

EPSS

Процентиль: 31%

0.00116

Низкий

9.8 Critical

CVSS3

CVE-2023-40359

Описание

Пакет xterm

Ссылки на источники

Связанные уязвимости