Joined: 12 May 2004
|Posted: Mon Mar 30, 2020 3:26 pm Post subject: [ GLSA 202003-62 ] GNU Screen
|Gentoo Linux Security Advisory
Title: GNU Screen: Buffer overflow (GLSA 202003-62)
A buffer overflow in GNU Screen might allow remote attackers to
GNU Screen is a full-screen window manager that multiplexes a physical
terminal between several processes, typically interactive shells.
Vulnerable: < 4.8.0
Unaffected: >= 4.8.0
Architectures: All supported architectures
A buffer overflow was found in the way GNU Screen treated the special
escape OSC 49.
A remote attacker, by writing a specially crafted string of characters
to a GNU Screen window, could possibly corrupt memory or have other
There is no known workaround at this time.
All GNU Screen users should upgrade to the latest version:
|# emerge --sync
# emerge --ask --oneshot --verbose ">=app-misc/screen-4.8.0"