Headline
CVE-2022-4170: Invalid Bug ID
The rxvt-unicode package is vulnerable to a remote code execution, in the Perl background extension, when an attacker can control the data written to the user’s terminal and certain options are set.
‘2151597?cve=title’ is not a valid bug number nor an alias to a bug.
Please press Back and try again.
Related news
CVE-2023-39726: "[31m"?! ANSI Terminal security in 2023 and finding 10 CVEs
An issue in Mintty v.3.6.4 and before allows a remote attacker to execute arbitrary code via crafted commands to the terminal.
CVE-2022-47583: "[31m"?! ANSI Terminal security in 2023 and finding 10 CVEs
Terminal character injection in Mintty before 3.6.3 allows code execution via unescaped output to the terminal.