Bug#629688: libvte9: malicious escape sequence causes gnome-terminal to crash (memory consumption DoS)
Josselin Mouette
joss at debian.org
Wed Jun 8 16:14:06 UTC 2011
forwarded 629688 https://bugzilla.gnome.org/show_bug.cgi?id=652124
severity 629688 grave
tag 629688 + security
thanks
Le mercredi 08 juin 2011 à 16:50 +0200, vladz a écrit :
> To reproduce the crash:
>
> $ printf "\033[100000000000000000@" > /tmp/x
> $ cat /tmp/x
Thanks for the report. I think this has security implications, since
this is a potential remote DoS.
> I wrote a small patch that checks this value inside the
> vte_sequence_handler_multiple() function in the vte-0.24.3/src/vteseq.c
> file. Let me know if you're interested.
Please send any patches to the upstream bug I opened.
Thanks,
--
.''`. Josselin Mouette
: :' :
`. `'
`-
More information about the pkg-gnome-maintainers
mailing list