You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa tmux

Sigurnosni nedostatak programskog paketa tmux

==========================================================================
Ubuntu Security Notice USN-4618-1
November 05, 2020

tmux vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 20.10
– Ubuntu 20.04 LTS

Summary:

tmux could be made to crash or execute arbitrary code if it received
a specially crafted input.

Software Description:
– tmux: terminal multiplexer

Details:

Sergey Nizovtsev discovered that tmux incorrectly handled some inputs.
An attacker could possibly use this issue to cause a crash or execute arbitrary code.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 20.10:
tmux 3.1b-1ubuntu0.1

Ubuntu 20.04 LTS:
tmux 3.0a-2ubuntu0.2

After a standard system update you need to restart tmux session to make
all the necessary changes.

References:
https://usn.ubuntu.com/4618-1
CVE-2020-27347

Package Information:
https://launchpad.net/ubuntu/+source/tmux/3.1b-1ubuntu0.1
https://launchpad.net/ubuntu/+source/tmux/3.0a-2ubuntu0.2
—–BEGIN PGP SIGNATURE—–
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=OerI
—–END PGP SIGNATURE—–

Top
More in Preporuke
Sigurnosni nedostatak programskog paketa sddm

Otkriven je sigurnosni nedostatak u programskom paketu sddm za operacijski sustav Debian. Otkriveni nedostatak potencijalnim napadačima omogućuje stjecanje uvećanih ovlasti....

Close