Bug 2142474 (CVE-2022-45063) - CVE-2022-45063 xterm: code execution via OSC 50 input sequences
Summary: CVE-2022-45063 xterm: code execution via OSC 50 input sequences
Keywords:
Status: NEW
Alias: CVE-2022-45063
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Nobody
QA Contact:
URL:
Whiteboard:
Depends On: 2142478 2142479 2142480 2142481 2142482 2142898 2142899 2143111 2143112
Blocks: 2141797
TreeView+ depends on / blocked
 
Reported: 2022-11-14 06:47 UTC by Sandipan Roy
Modified: 2023-07-07 08:30 UTC (History)
12 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
A flaw was found in xterm. This issue may allow code execution via font ops.
Clone Of:
Environment:
Last Closed:
Embargoed:


Attachments (Terms of Use)

Description Sandipan Roy 2022-11-14 06:47:50 UTC
xterm before 375 allows code execution via font ops, e.g., because an OSC 50 response may have Ctrl-g and therefore lead to command execution within the vi line-editing mode of Zsh. NOTE: font ops are not allowed in the xterm default configurations of some Linux distributions.

https://invisible-island.net/xterm/xterm.log.html
https://www.openwall.com/lists/oss-security/2022/11/10/1
https://news.ycombinator.com/item?id=33546415
http://www.openwall.com/lists/oss-security/2022/11/10/1
http://www.openwall.com/lists/oss-security/2022/11/10/5

Comment 1 Sandipan Roy 2022-11-14 07:02:30 UTC
Created cockpit tracking bugs for this issue:

Affects: fedora-all [bug 2142478]


Created cockpit-podman tracking bugs for this issue:

Affects: fedora-all [bug 2142479]


Created cockpit-session-recording tracking bugs for this issue:

Affects: fedora-all [bug 2142480]


Created xterm tracking bugs for this issue:

Affects: fedora-all [bug 2142481]


Created zuul tracking bugs for this issue:

Affects: fedora-all [bug 2142482]


Note You need to log in before you can comment on or make changes to this bug.