CVE-2015-6806

Priority
Description
The MScrollV function in ansi.c in GNU screen 4.3.1 and earlier does not
properly limit recursion, which allows remote attackers to cause a denial
of service (stack consumption) via an escape sequence with a large repeat
count value.
Package
Upstream:released (4.3.1-2)
Ubuntu 12.04 ESM (Precise Pangolin):needed
Trusty/esm:needed
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (4.3.1-2)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (4.3.1-2)
Ubuntu 18.10 (Cosmic Cuttlefish):not-affected (4.3.1-2)
Ubuntu 19.04 (Disco Dingo):not-affected (4.3.1-2)
Ubuntu 19.10 (Eoan):not-affected (4.3.1-2)
Patches:
Upstream:http://git.savannah.gnu.org/cgit/screen.git/commit/?id=c336a32a1dcd445e6b83827f83531d4c6414e2cd
More Information

Updated: 2019-04-26 14:15:34 UTC (commit 30899e40836d26e1bb5f0b072d31fd87b6cf3bd4)