CVE-2019-0542

Source

https://nvd.nist.gov/vuln/detail/CVE-2019-0542

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-0542.json

Aliases

GHSA-mc23-976p-j42x

Published

2019-01-09T15:29:00Z

Modified

2023-11-29T06:49:32.937048Z

Details

A remote code execution vulnerability exists in Xterm.js when the component mishandles special characters, aka "Xterm Remote Code Execution Vulnerability." This affects xterm.js.

References

https://access.redhat.com/errata/RHBA-2019:0959
https://access.redhat.com/errata/RHSA-2019:1422
https://access.redhat.com/errata/RHSA-2019:2551
https://access.redhat.com/errata/RHSA-2019:2552
http://www.securityfocus.com/bid/106434
https://github.com/xtermjs/xterm.js/releases

Affected packages

Git / github.com/xtermjs/xterm.js

Affected ranges

Type: GIT
Repo: https://github.com/xtermjs/xterm.js
Events: Fixed

904ddffc8d370421783f0917797617bfce508854

Introduced

1c62980d202dc6ed14d4ad60337ea05e6a6a3638

Introduced

740ca9ce6d172c9bd37ca9bca82195cc9c36afcf

Affected versions

3.*

3.10.0

3.11.0

3.12.0

3.13.0

3.14.0

3.9.0

4.*

4.0.0

4.1.0

4.10.0

4.11.0

4.12.0

4.13.0

4.14.0

4.14.1

4.15.0

4.16.0

4.17.0

4.18.0

4.19.0

4.2.0

4.3.0

4.4.0

4.5.0

4.6.0

4.7.0

4.8.0

4.8.1

4.9.0