The MScrollV function in ansi.c in GNU screen 4.3.1 and earlier does not properly limit recursion, which allows remote attackers to cause a denial of service (stack consumption) via an escape sequence with a large repeat count value.
{ "binaries": [ { "binary_name": "screen", "binary_version": "4.1.0~20120320gitdb59704-9ubuntu0.1~esm1" }, { "binary_name": "screen-dbg", "binary_version": "4.1.0~20120320gitdb59704-9ubuntu0.1~esm1" }, { "binary_name": "screen-dbgsym", "binary_version": "4.1.0~20120320gitdb59704-9ubuntu0.1~esm1" } ], "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "ubuntu_priority": "low" }