CVE-2022-45063

xterm before 375 allows code execution via font ops, e.g., because an OSC 50 response may have Ctrl-g and therefore lead to command execution within the vi line-editing mode of Zsh. NOTE: font ops are not allowed in the xterm default configurations of some Linux distributions.
Command Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 94%
Affected Products (NVD)
VendorProductVersion
invisible-islandxterm
𝑥
< 375
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
xterm
bookworm
379-1
fixed
bullseye
no-dsa
buster
postponed
sid
395-1
fixed
trixie
395-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
xterm
bionic
ignored
focal
ignored
jammy
ignored
kinetic
ignored
lunar
not-affected
trusty
ignored
xenial
ignored
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
xterm-330
suse enterprise desktop 15 SP4
150200.11.9.1
fixed
suse enterprise desktop 15 SP5
150200.11.9.1
fixed
suse enterprise desktop 15 SP6
150200.11.9.1
fixed
suse enterprise desktop 15 SP7
150200.11.9.1
fixed
suse enterprise sap 15 SP2
150200.11.9.1
fixed
suse enterprise sap 15 SP3
150200.11.9.1
fixed
suse enterprise sap 15 SP4
150200.11.9.1
fixed
suse enterprise sap 15 SP5
150200.11.9.1
fixed
suse enterprise sap 15 SP6
150200.11.9.1
fixed
suse enterprise sap 15 SP7
150200.11.9.1
fixed
suse enterprise server 15 SP1
150000.4.6.1
fixed
suse enterprise server 15 SP2
150200.11.9.1
fixed
suse enterprise server 15 SP3
150200.11.9.1
fixed
suse enterprise server 15 SP4
150200.11.9.1
fixed
suse enterprise server 15 SP5
150200.11.9.1
fixed
suse enterprise server 15 SP6
150200.11.9.1
fixed
suse enterprise server 15 SP7
150200.11.9.1
fixed
xterm-bin-330
suse enterprise desktop 15 SP4
150200.11.9.1
fixed
suse enterprise desktop 15 SP5
150200.11.9.1
fixed
suse enterprise desktop 15 SP6
150200.11.9.1
fixed
suse enterprise desktop 15 SP7
150200.11.9.1
fixed
suse enterprise sap 15 SP2
150200.11.9.1
fixed
suse enterprise sap 15 SP3
150200.11.9.1
fixed
suse enterprise sap 15 SP4
150200.11.9.1
fixed
suse enterprise sap 15 SP5
150200.11.9.1
fixed
suse enterprise sap 15 SP6
150200.11.9.1
fixed
suse enterprise sap 15 SP7
150200.11.9.1
fixed
suse enterprise server 15 SP1
150000.4.6.1
fixed
suse enterprise server 15 SP2
150200.11.9.1
fixed
suse enterprise server 15 SP3
150200.11.9.1
fixed
suse enterprise server 15 SP4
150200.11.9.1
fixed
suse enterprise server 15 SP5
150200.11.9.1
fixed
suse enterprise server 15 SP6
150200.11.9.1
fixed
suse enterprise server 15 SP7
150200.11.9.1
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
xterm
RHEL 9
0:366-10.el9_6
fixed
xterm-resize
RHEL 9
0:366-10.el9_6
fixed
Common Weakness Enumeration
References
http://www.openwall.com/lists/oss-security/2022/11/10/1
http://www.openwall.com/lists/oss-security/2022/11/10/5
http://www.openwall.com/lists/oss-security/2024/06/15/1
http://www.openwall.com/lists/oss-security/2024/06/17/1
https://invisible-island.net/xterm/xterm.log.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4TPVNTYFFWNTGZJJQAA4MGGFSTXA4XEA/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5T2JI5JCHPTXX2KJU45H2XAHQSFVEJ2Y/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IVD3I2ZFXGOY6BA2FNS7WPFMPFBDHFWC/
https://news.ycombinator.com/item?id=33546415
https://security.gentoo.org/glsa/202211-09
https://www.openwall.com/lists/oss-security/2022/11/10/1
http://www.openwall.com/lists/oss-security/2022/11/10/1
http://www.openwall.com/lists/oss-security/2022/11/10/5
http://www.openwall.com/lists/oss-security/2024/06/15/1
http://www.openwall.com/lists/oss-security/2024/06/17/1
http://www.openwall.com/lists/oss-security/2026/04/08/1
http://www.openwall.com/lists/oss-security/2026/04/08/10
https://invisible-island.net/xterm/xterm.log.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4TPVNTYFFWNTGZJJQAA4MGGFSTXA4XEA/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5T2JI5JCHPTXX2KJU45H2XAHQSFVEJ2Y/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IVD3I2ZFXGOY6BA2FNS7WPFMPFBDHFWC/
https://news.ycombinator.com/item?id=33546415
https://security.gentoo.org/glsa/202211-09
https://www.openwall.com/lists/oss-security/2022/11/10/1