CVE-2015-6806 (retired)

Priority
Description
The MScrollV function in ansi.c in GNU screen 4.3.1 and earlier does not
properly limit recursion, which allows remote attackers to cause a denial
of service (stack consumption) via an escape sequence with a large repeat
count value.
Package
Upstream:released (4.3.1-2)
Ubuntu 12.04 ESM (Precise Pangolin):released (4.0.3-14ubuntu8.1)
Ubuntu 14.04 ESM (Trusty Tahr):released (4.1.0~20120320gitdb59704-9ubuntu0.1~esm1)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (4.3.1-2)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (4.3.1-2)
Ubuntu 19.04 (Disco Dingo):not-affected (4.3.1-2)
Ubuntu 19.10 (Eoan):not-affected (4.3.1-2)
Patches:
Upstream:http://git.savannah.gnu.org/cgit/screen.git/commit/?id=c336a32a1dcd445e6b83827f83531d4c6414e2cd
More Information

Updated: 2019-08-23 09:07:35 UTC (commit 436fd4ed4cf0038ddd382cb8649607ace163dda7)