Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
xterm before 375 allows code execution via font ops, e.g., because an OSC 50 response may have Ctrl-g and therefore lead to command execution within the vi line-editing mode of Zsh. NOTE: font ops are not allowed in the xterm default configurations of some Linux distributions.
- http://www.openwall.com/lists/oss-security/2024/06/17/1
- https://github.com/ARPSyndicate/cvemon
- https://github.com/dgl/houdini-kubectl-poc
- https://github.com/kherrick/hacker-news