Oval Definition:oval:org.mitre.oval:def:29143
Revision Date:2015-08-17Version:9
Title:RHSA-2009:0018 -- xterm security update (Important)
Description:An updated xterm package to correct a security issue is now available forRed Hat Enterprise Linux 3, 4, and 5.This update has been rated as having important security impact by the RedHat Security Response Team.The xterm program is a terminal emulator for the X Window System.A flaw was found in the xterm handling of Device Control Request StatusString (DECRQSS) escape sequences. An attacker could create a malicioustext file (or log entry, if unfiltered) that could run arbitrary commandsif read by a victim inside an xterm window. (CVE-2008-2383)
Family:unixClass:patch
Status:ACCEPTEDReference(s):CESA-2009:0018-CentOS 3
CESA-2009:0018-CentOS 5
CVE-2008-2383
RHSA-2009:0018
Platform(s):CentOS Linux 3
CentOS Linux 5
Red Hat Enterprise Linux 3
Red Hat Enterprise Linux 4
Red Hat Enterprise Linux 5
Product(s):xterm
Definition Synopsis
  • Red Hat Enterprise Linux 3 release section
  • The operating system installed on the system is Red Hat Enterprise Linux 3
  • AND xterm is earlier than 0:179-11.EL3
  • Red Hat Enterprise Linux 4 release section
  • The operating system installed on the system is Red Hat Enterprise Linux 4
  • AND xterm is earlier than 0:192-8.el4_7.2
  • Red Hat Enterprise Linux 5 and CentOS Linux 5 release section
  • Operation system section
  • The operating system installed on the system is Red Hat Enterprise Linux 5
  • OR The operating system installed on the system is CentOS Linux 5.x
  • AND xterm is earlier than 0:215-5.el5_2.2
  • BACK