*** This bug is a security vulnerability ***
You have been subscribed to a public security bug by Jamie Strandboge
(jdstrand):
Binary package hint: htop
Htop writes process names to a terminal without sanitizing non-printable
characters, which might allow local users to hide processes, modify
arbitrary files, or have unspecified other impact via a process name
with "crazy control strings."
** Affects: htop (Ubuntu)
Importance: Undecided
Status: Fix Released
** Affects: htop (Debian)
Importance: Unknown
Status: Unknown
** Affects: htop (Fedora)
Importance: Unknown
Status: Confirmed
--
[CVE-2008-5076] htop does not filter non-printable characters in process names
https://bugs.launchpad.net/bugs/299627
You received this bug notification because you are a member of Ubuntu Bugs,
which is a direct subscriber.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
