CVE-2015-6806

Priority
Description
The MScrollV function in ansi.c in GNU screen 4.3.1 and earlier does not
properly limit recursion, which allows remote attackers to cause a denial
of service (stack consumption) via an escape sequence with a large repeat
count value.
Package
Upstream:released (4.3.1-2)
Ubuntu 12.04 ESM (Precise Pangolin):needed
Ubuntu 14.04 LTS (Trusty Tahr):needed
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (4.3.1-2)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (4.3.1-2)
Ubuntu 18.10 (Cosmic Cuttlefish):not-affected (4.3.1-2)
Ubuntu 19.04 (Disco Dingo):not-affected (4.3.1-2)
Patches:
Upstream:http://git.savannah.gnu.org/cgit/screen.git/commit/?id=c336a32a1dcd445e6b83827f83531d4c6414e2cd
More Information

Updated: 2019-01-14 21:17:36 UTC (commit 51f9b73af244ba86b9321e46e526586c25a8e060)