Comment 1 for bug 311983

Launchpad Janitor (janitor) wrote :

This bug was fixed in the package xterm - 235-1ubuntu1.1

---------------
xterm (235-1ubuntu1.1) intrepid-security; urgency=low

  * SECURITY UPDATE: command injection via dangerous terminal sequences
    (CVE-2008-2383, LP: #311983).
    - block DECRQSS, font shifting, X property changes, user-defined
      keys. Thanks to Paul Szabo and Florian Weimer.

 -- Kees Cook <email address hidden> Fri, 02 Jan 2009 11:28:08 -0800