{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "xterm before Patch #366 allows remote attackers to execute arbitrary code or cause a denial of service (segmentation fault) via a crafted UTF-8 combining character sequence."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2022-08-14T01:08:25", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://www.openwall.com/lists/oss-security/2021/02/09/7"}, {"tags": ["x_refsource_MISC"], "url": "https://www.openwall.com/lists/oss-security/2021/02/09/9"}, {"name": "[oss-security] 20210210 Re: Re: screen crash processing combining characters", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2021/02/10/7"}, {"name": "[debian-lts-announce] 20210213 [SECURITY] [DLA 2558-1] xterm security update", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "https://lists.debian.org/debian-lts-announce/2021/02/msg00019.html"}, {"name": "FEDORA-2021-e7a8e79fa8", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/35LK2ZXEIJUOGOA7FV2TJL3L6LFJ4X5S/"}, {"tags": ["x_refsource_MISC"], "url": "https://news.ycombinator.com/item?id=26524650"}, {"tags": ["x_refsource_MISC"], "url": "https://access.redhat.com/security/cve/CVE-2021-27135"}, {"tags": ["x_refsource_MISC"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1927559"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://invisible-island.net/xterm/xterm.log.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://github.com/ThomasDickey/xterm-snapshots/commit/82ba55b8f994ab30ff561a347b82ea340ba7075c"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.suse.com/show_bug.cgi?id=1182091"}, {"name": "20210520 CVE-2021-31535 libX11 Insufficient Length Checks PoC and Archeology", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://seclists.org/fulldisclosure/2021/May/52"}, {"name": "GLSA-202208-22", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "https://security.gentoo.org/glsa/202208-22"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2021-27135", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "xterm before Patch #366 allows remote attackers to execute arbitrary code or cause a denial of service (segmentation fault) via a crafted UTF-8 combining character sequence."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://www.openwall.com/lists/oss-security/2021/02/09/7", "refsource": "MISC", "url": "https://www.openwall.com/lists/oss-security/2021/02/09/7"}, {"name": "https://www.openwall.com/lists/oss-security/2021/02/09/9", "refsource": "MISC", "url": "https://www.openwall.com/lists/oss-security/2021/02/09/9"}, {"name": "[oss-security] 20210210 Re: Re: screen crash processing combining characters", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2021/02/10/7"}, {"name": "[debian-lts-announce] 20210213 [SECURITY] [DLA 2558-1] xterm security update", "refsource": "MLIST", "url": "https://lists.debian.org/debian-lts-announce/2021/02/msg00019.html"}, {"name": "FEDORA-2021-e7a8e79fa8", "refsource": "FEDORA", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/35LK2ZXEIJUOGOA7FV2TJL3L6LFJ4X5S/"}, {"name": "https://news.ycombinator.com/item?id=26524650", "refsource": "MISC", "url": "https://news.ycombinator.com/item?id=26524650"}, {"name": "https://access.redhat.com/security/cve/CVE-2021-27135", "refsource": "MISC", "url": "https://access.redhat.com/security/cve/CVE-2021-27135"}, {"name": "https://bugzilla.redhat.com/show_bug.cgi?id=1927559", "refsource": "MISC", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1927559"}, {"name": "https://invisible-island.net/xterm/xterm.log.html", "refsource": "CONFIRM", "url": "https://invisible-island.net/xterm/xterm.log.html"}, {"name": "https://github.com/ThomasDickey/xterm-snapshots/commit/82ba55b8f994ab30ff561a347b82ea340ba7075c", "refsource": "CONFIRM", "url": "https://github.com/ThomasDickey/xterm-snapshots/commit/82ba55b8f994ab30ff561a347b82ea340ba7075c"}, {"name": "https://bugzilla.suse.com/show_bug.cgi?id=1182091", "refsource": "CONFIRM", "url": "https://bugzilla.suse.com/show_bug.cgi?id=1182091"}, {"name": "20210520 CVE-2021-31535 libX11 Insufficient Length Checks PoC and Archeology", "refsource": "FULLDISC", "url": "http://seclists.org/fulldisclosure/2021/May/52"}, {"name": "GLSA-202208-22", "refsource": "GENTOO", "url": "https://security.gentoo.org/glsa/202208-22"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T20:40:47.383Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www.openwall.com/lists/oss-security/2021/02/09/7"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www.openwall.com/lists/oss-security/2021/02/09/9"}, {"name": "[oss-security] 20210210 Re: Re: screen crash processing combining characters", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2021/02/10/7"}, {"name": "[debian-lts-announce] 20210213 [SECURITY] [DLA 2558-1] xterm security update", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "https://lists.debian.org/debian-lts-announce/2021/02/msg00019.html"}, {"name": "FEDORA-2021-e7a8e79fa8", "tags": ["vendor-advisory", "x_refsource_FEDORA", "x_transferred"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/35LK2ZXEIJUOGOA7FV2TJL3L6LFJ4X5S/"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://news.ycombinator.com/item?id=26524650"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://access.redhat.com/security/cve/CVE-2021-27135"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1927559"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://invisible-island.net/xterm/xterm.log.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/ThomasDickey/xterm-snapshots/commit/82ba55b8f994ab30ff561a347b82ea340ba7075c"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.suse.com/show_bug.cgi?id=1182091"}, {"name": "20210520 CVE-2021-31535 libX11 Insufficient Length Checks PoC and Archeology", "tags": ["mailing-list", "x_refsource_FULLDISC", "x_transferred"], "url": "http://seclists.org/fulldisclosure/2021/May/52"}, {"name": "GLSA-202208-22", "tags": ["vendor-advisory", "x_refsource_GENTOO", "x_transferred"], "url": "https://security.gentoo.org/glsa/202208-22"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2021-27135", "datePublished": "2021-02-10T15:51:16", "dateReserved": "2021-02-10T00:00:00", "dateUpdated": "2024-08-03T20:40:47.383Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:invisible-island:xterm:*:*:*:*:*:*:*:*", "matchCriteriaId": "06CEF6AB-8CBF-4325-8EB9-6979AEBB1F9D", "versionEndExcluding": "366", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*", "matchCriteriaId": "E460AA51-FCDA-46B9-AE97-E6676AA5E194", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "xterm before Patch #366 allows remote attackers to execute arbitrary code or cause a denial of service (segmentation fault) via a crafted UTF-8 combining character sequence."}, {"lang": "es", "value": "xterm antes del parche #366 permite a los atacantes remotos ejecutar c\u00f3digo arbitrario o provocar una denegaci\u00f3n de servicio (fallo de segmentaci\u00f3n) a trav\u00e9s de una secuencia de caracteres de combinaci\u00f3n UTF-8 manipulada"}], "id": "CVE-2021-27135", "lastModified": "2023-11-07T03:31:55.217", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2021-02-10T16:15:13.787", "references": [{"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://seclists.org/fulldisclosure/2021/May/52"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://www.openwall.com/lists/oss-security/2021/02/10/7"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://access.redhat.com/security/cve/CVE-2021-27135"}, {"source": "cve@mitre.org", "tags": ["Issue Tracking"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1927559"}, {"source": "cve@mitre.org", "tags": ["Issue Tracking"], "url": "https://bugzilla.suse.com/show_bug.cgi?id=1182091"}, {"source": "cve@mitre.org", "tags": ["Patch", "Third Party Advisory"], "url": "https://github.com/ThomasDickey/xterm-snapshots/commit/82ba55b8f994ab30ff561a347b82ea340ba7075c"}, {"source": "cve@mitre.org", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://invisible-island.net/xterm/xterm.log.html"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://lists.debian.org/debian-lts-announce/2021/02/msg00019.html"}, {"source": "cve@mitre.org", "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/35LK2ZXEIJUOGOA7FV2TJL3L6LFJ4X5S/"}, {"source": "cve@mitre.org", "tags": ["Issue Tracking", "Third Party Advisory"], "url": "https://news.ycombinator.com/item?id=26524650"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://security.gentoo.org/glsa/202208-22"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://www.openwall.com/lists/oss-security/2021/02/09/7"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://www.openwall.com/lists/oss-security/2021/02/09/9"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2021:0617", "cpe": "cpe:/o:redhat:enterprise_linux:7", "package": "xterm-0:295-3.el7_9.1", "product_name": "Red Hat Enterprise Linux 7", "release_date": "2021-02-22T00:00:00Z"}, {"advisory": "RHSA-2021:0611", "cpe": "cpe:/a:redhat:enterprise_linux:8", "package": "xterm-0:331-1.el8_3.2", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2021-02-18T00:00:00Z"}, {"advisory": "RHSA-2021:0650", "cpe": "cpe:/a:redhat:rhel_eus:8.1", "package": "xterm-0:331-1.el8_1.1", "product_name": "Red Hat Enterprise Linux 8.1 Extended Update Support", "release_date": "2021-02-24T00:00:00Z"}, {"advisory": "RHSA-2021:0651", "cpe": "cpe:/a:redhat:rhel_eus:8.2", "package": "xterm-0:331-1.el8_2.1", "product_name": "Red Hat Enterprise Linux 8.2 Extended Update Support", "release_date": "2021-02-24T00:00:00Z"}], "bugzilla": {"description": "xterm: crash when processing combining characters", "id": "1927559", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1927559"}, "csaw": false, "cvss3": {"cvss3_base_score": "9.6", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H", "status": "verified"}, "cwe": "CWE-787", "details": ["xterm before Patch #366 allows remote attackers to execute arbitrary code or cause a denial of service (segmentation fault) via a crafted UTF-8 combining character sequence.", "A flaw was found in xterm. A specially crafted sequence of combining characters causes an out of bounds write leading to arbitrary code execution. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability."], "mitigation": {"lang": "en:us", "value": "This vulnerability can be mitigated by disabling UTF-8 support in XTerm configuration. An entry such as \"XTerm.vt100.utf8: false\" in Xresources will disable UTF-8. This can be set as a system default in /etc/X11/Xresources, or per-user in ~/.Xresources.\nNote that this setting can still be overridden if xterm is invoked with the \"-u8\" command line option, so the mitigation may not protect all use cases."}, "name": "CVE-2021-27135", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Out of support scope", "package_name": "xterm", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:9", "fix_state": "Not affected", "package_name": "xterm", "product_name": "Red Hat Enterprise Linux 9"}], "public_date": "2021-02-10T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2021-27135\nhttps://nvd.nist.gov/vuln/detail/CVE-2021-27135"], "threat_severity": "Important", "upstream_fix": "xterm 366"}