[Bug 299627] [NEW] [CVE-2008-5076] htop does not filter non-printable characters in process names
Launchpad Bug Tracker
299627 at bugs.launchpad.net
Wed Nov 26 17:41:27 UTC 2008
*** This bug is a security vulnerability ***
You have been subscribed to a public security bug by Jamie Strandboge (jdstrand):
Binary package hint: htop
Htop writes process names to a terminal without sanitizing non-printable
characters, which might allow local users to hide processes, modify
arbitrary files, or have unspecified other impact via a process name
with "crazy control strings."
** Affects: htop (Ubuntu)
Importance: Undecided
Status: Fix Released
** Affects: htop (Debian)
Importance: Unknown
Status: Unknown
** Affects: htop (Fedora)
Importance: Unknown
Status: Confirmed
--
[CVE-2008-5076] htop does not filter non-printable characters in process names
https://bugs.launchpad.net/bugs/299627
You received this bug notification because you are a member of Ubuntu Bugs, which is a direct subscriber.
--
ubuntu-bugs mailing list
ubuntu-bugs at lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
More information about the universe-bugs
mailing list