Pop-Up Thingie
Sidebar
>>> Magnum BBS <<<
Home
Forum
Files
Dark
Log in
Username
Password
Sidebar
Forum
Usenet
LINUX.DEBIAN.BUGS.DIST
Bug#1067849: util-linux: CVE-2024-28085: wall: escape sequence injectio
From
Salvatore Bonaccorso
@21:1/5 to
All
on Wed Mar 27 17:20:01 2024
Source: util-linux
Version: 2.39.3-11
Severity: grave
Tags: security upstream
Justification: user security hole
X-Debbugs-Cc:
carnil@debian.org
, Debian Security Team <
team@security.debian.org
>
Control: found -1 2.38.1-5
Control: found -1 2.36.1-8+deb11u1
Control: found -1 2.36.1-8
Control: found -1 2.33.1-0.1
Hi,
The following vulnerability was published for util-linux.
CVE-2024-28085[0]:
| escape sequence injection in wall
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0]
https://security-tracker.debian.org/tracker/CVE-2024-28085
https://www.cve.org/CVERecord?id=CVE-2024-28085
[1]
https://www.openwall.com/lists/oss-security/2024/03/27/5
[2]
https://people.rit.edu/sjf5462/6831711781/wall_2_27_2024.txt
[3]
https://github.com/skyler-ferrante/CVE-2024-28085
Regards,
Salvatore
-- System Information:
Debian Release: trixie/sid
APT prefers unstable
APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Kernel: Linux 6.1.0-18-amd64 (SMP w/16 CPU threads; PREEMPT)
Locale: LANG=C, LC_CTYPE=C.UTF-8 (charmap=UTF-8), LANGUAGE not set
Shell: /bin/sh linked to /usr/bin/dash
Init: sysvinit (via /sbin/init)
--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)
Who's Online
System Info
Sysop:
Keyop
Location:
Huddersfield, West Yorkshire, UK
Users:
300
Nodes:
16 (
2
/
14
)
Uptime:
13:47:17
Calls:
6,706
Files:
12,237
Messages:
5,351,041