CVE-2022-45063
Published: 10 November 2022
xterm before 375 allows code execution via font ops, e.g., because an OSC 50 response may have Ctrl-g and therefore lead to command execution within the vi line-editing mode of Zsh. NOTE: font ops are not allowed in the xterm default configurations of some Linux distributions.
Notes
| Author | Note |
|---|---|
| eslerm | disabled by default, see 904_fontops.diff and 902_windowops.diff |
Priority
Status
| Package | Release | Status |
|---|---|---|
|
xterm Launchpad, Ubuntu, Debian |
bionic |
Ignored
(code-not-compiled)
|
| focal |
Ignored
(code-not-compiled)
|
|
| lunar |
Not vulnerable
(379-1ubuntu1)
|
|
| trusty |
Ignored
(end of standard support)
|
|
| upstream |
Released
(375-1)
|
|
| jammy |
Ignored
(code-not-compiled)
|
|
| kinetic |
Ignored
(end of life, was ignored [code-not-compiled])
|
|
| xenial |
Ignored
(code-not-compiled)
|
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score | 9.8 |
| Attack vector | Network |
| Attack complexity | Low |
| Privileges required | None |
| User interaction | None |
| Scope | Unchanged |
| Confidentiality | High |
| Integrity impact | High |
| Availability impact | High |
| Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
References
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45063
- https://www.openwall.com/lists/oss-security/2022/11/10/1
- https://invisible-island.net/xterm/xterm.log.html
- https://news.ycombinator.com/item?id=33546415
- http://www.openwall.com/lists/oss-security/2022/11/10/1
- http://www.openwall.com/lists/oss-security/2022/11/10/5
- NVD
- Launchpad
- Debian