The MScrollV function in ansi.c in GNU screen 4.3.1 and earlier does not properly limit recursion, which allows remote attackers to cause a denial of service (stack consumption) via an escape sequence with a large repeat count value.
{ "binaries": [ { "binary_version": "4.1.0~20120320gitdb59704-9ubuntu0.1~esm1", "binary_name": "screen" }, { "binary_version": "4.1.0~20120320gitdb59704-9ubuntu0.1~esm1", "binary_name": "screen-dbg" }, { "binary_version": "4.1.0~20120320gitdb59704-9ubuntu0.1~esm1", "binary_name": "screen-dbgsym" } ], "ubuntu_priority": "low", "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro" }