---

CVE-2021-26937 - log back

CVE-2021-26937 edited at 04 Mar 2021 17:22:40
References	https://www.openwall.com/lists/oss-security/2021/02/09/3 + https://savannah.gnu.org/bugs/?60030 https://lists.gnu.org/archive/html/screen-devel/2021-02/msg00000.html - https://savannah.gnu.org/bugs/?60030 + https://lists.gnu.org/archive/html/screen-devel/2021-02/msg00010.html

CVE-2021-26937 edited at 10 Feb 2021 08:33:56
References	https://www.openwall.com/lists/oss-security/2021/02/09/3 https://lists.gnu.org/archive/html/screen-devel/2021-02/msg00000.html + https://savannah.gnu.org/bugs/?60030

CVE-2021-26937 edited at 09 Feb 2021 20:41:57
Severity	- Unknown + Medium
Remote	- Unknown + Remote
Type	- Unknown + Arbitrary code execution
Description	+ encoding.c in GNU Screen through 4.8.0 allows remote attackers to cause a denial of service (invalid write access and application crash) or possibly have unspecified other impact via a crafted UTF-8 character sequence.
References	+ https://www.openwall.com/lists/oss-security/2021/02/09/3 + https://lists.gnu.org/archive/html/screen-devel/2021-02/msg00000.html
Notes

CVE-2021-26937 created at 09 Feb 2021 20:40:35