Opened 6 years ago

Closed 5 years ago

Last modified 5 years ago

#8767 closed enhancement (fixed)

screen-4.5.1 (CVE-2017-5618)

Reported by: Douglas R. Reno Owned by: Douglas R. Reno
Priority: normal Milestone: 8.1
Component: BOOK Version: SVN
Severity: normal Keywords:
Cc:

Description

New minor version

Changes:

The 4.5.0 release is mostly a bugfix release:
-> broken handling of "bind u digraph U+" (bug #48691)
-> crash with long $TERM (bug #48983)
-> crash when bumping blank window
-> build for AIX (bug #49149)
-> %x improperly separating arguments
-> install with custom DESTDIR (bug #48370)

Just one new feature: it is possible to specify logfile's name via
command line parameter '-L' (default name stays screenlog.0).

Change History (7)

comment:1 by Douglas R. Reno, 6 years ago

Owner: changed from blfs-book@… to Douglas R. Reno
Status: newassigned

comment:2 by Douglas R. Reno, 6 years ago

Resolution: fixed
Status: assignedclosed

Fixed at r18205

comment:3 by Douglas R. Reno, 6 years ago

Milestone: 8.0hold
Resolution: fixed
Status: closedreopened
Summary: screen-4.5.0screen-4.5.0 (hold for security vulnerability)

Reverted at r18206 as a result of a security vulnerability.

Please downgrade if you upgraded in the 5 hours since I committed this.

comment:4 by Douglas R. Reno, 5 years ago

Milestone: hold8.1
Summary: screen-4.5.0 (hold for security vulnerability)screen-4.5.1 (CVE-2017-5618)

4.5.1 is out. I'm going to update to it with this build.

Version 4.5.1 (25/02/2017):
  *Fixes:
  - logfile permissions problem (CVE-2017-5618)
  - SunOS build problem (bug #50089)
  - FreeBSD core dumps (bug #50143)

comment:5 by Douglas R. Reno, 5 years ago

Resolution: fixed
Status: reopenedclosed

Fixed at r18435

comment:6 by bdubbs@…, 5 years ago

Milestone: 8.1m8.1

Milestone renamed

comment:7 by bdubbs@…, 5 years ago

Milestone: m8.18.1

Milestone renamed

Note: See TracTickets for help on using tickets.