Bug#984615: xterm: bug in CVE-2021-27135 patch in at least stretch
Utkarsh Gupta dixit:
>Thanks to Thomas for his help, I've uploaded a fix for this regression
>(by reverting the backport of that part of the patch which was not
>necessary
It’s got some memory impact, but probably neglegible here, true.
> for this CVE fix). And thanks to Thorsten for his
>comprehensive bug report and to Sven for further debugging and taking
>a look.
You’re welcome.
>Thorsten, could you please test the latest upload and see if
>everything works alright for you?
I don’t actally have a testcase, I’ve just noticed that this is wrong
when trying to backport the patch further myself.
But it won’t hit the bug now.
bye,
//mirabilos
--
„Cool, /usr/share/doc/mksh/examples/uhr.gz ist ja ein Grund,
mksh auf jedem System zu installieren.“
-- XTaran auf der OpenRheinRuhr, ganz begeistert
(EN: “[…]uhr.gz is a reason to install mksh on every system.”)
Reply to: