Security Advisory Important: xterm security update

Advisory: RHSA-2009:0018-8
Type: Security Advisory
Severity: Important
Issued on: 2009-01-07
Last updated on: 2009-01-07
Affected Products: Red Hat Desktop (v. 3)
Red Hat Desktop (v. 4)
Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux AS (v. 3)
Red Hat Enterprise Linux AS (v. 4)
Red Hat Enterprise Linux AS (v. 4.7.z)
Red Hat Enterprise Linux Desktop (v. 5 client)
Red Hat Enterprise Linux ES (v. 3)
Red Hat Enterprise Linux ES (v. 4)
Red Hat Enterprise Linux ES (v. 4.7.z)
Red Hat Enterprise Linux EUS (v. 5.2.z server)
Red Hat Enterprise Linux WS (v. 3)
Red Hat Enterprise Linux WS (v. 4)
OVAL: com.redhat.rhsa-20090018.xml
CVEs (cve.mitre.org): CVE-2008-2383

Details

An updated xterm package to correct a security issue is now available for
Red Hat Enterprise Linux 3, 4, and 5.

This update has been rated as having important security impact by the Red
Hat Security Response Team.

The xterm program is a terminal emulator for the X Window System.

A flaw was found in the xterm handling of Device Control Request Status
String (DECRQSS) escape sequences. An attacker could create a malicious
text file (or log entry, if unfiltered) that could run arbitrary commands
if read by a victim inside an xterm window. (CVE-2008-2383)

All xterm users are advised to upgrade to the updated package, which
contains a backported patch to resolve this issue. All running instances of
xterm must be restarted for the update to take effect.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

Updated packages

Red Hat Desktop (v. 3)
SRPMS:
xterm-179-11.EL3.src.rpm     5578f58aba103e1be4e73d6796c88be1
 
IA-32:
xterm-179-11.EL3.i386.rpm     cf15bd99236e209e185469c47b887303
 
x86_64:
xterm-179-11.EL3.x86_64.rpm     9486a03eff9ee1342547642038d88106
 
Red Hat Desktop (v. 4)
SRPMS:
xterm-192-8.el4_7.2.src.rpm     910185dcbd5b1cf4b5222d057b28e4c4
 
IA-32:
xterm-192-8.el4_7.2.i386.rpm     417c0994d3bff4ac7bb9dbba4bc9b5f1
 
x86_64:
xterm-192-8.el4_7.2.x86_64.rpm     53cebce0379602127767862aa75ee2de
 
Red Hat Enterprise Linux (v. 5 server)
SRPMS:
xterm-215-5.el5_2.2.src.rpm
File outdated by:  RHBA-2009:0252		     9c13da42cf0b7514c68362b25caaec2e
 
IA-32:
xterm-215-5.el5_2.2.i386.rpm
File outdated by:  RHBA-2009:0252		     8606bd6bccdb889eeff361da43be3449
 
IA-64:
xterm-215-5.el5_2.2.ia64.rpm
File outdated by:  RHBA-2009:0252		     b7311021180aba9dee2314b01a838cdb
 
PPC:
xterm-215-5.el5_2.2.ppc.rpm
File outdated by:  RHBA-2009:0252		     9c3ee19847b018b97dd92a6ad6608a73
 
s390x:
xterm-215-5.el5_2.2.s390x.rpm
File outdated by:  RHBA-2009:0252		     1f3a5869318f3027820ca2e55ce54a90
 
x86_64:
xterm-215-5.el5_2.2.x86_64.rpm
File outdated by:  RHBA-2009:0252		     9a9d9ee5a20f5ee604460aba3f4f0b6d
 
Red Hat Enterprise Linux AS (v. 3)
SRPMS:
xterm-179-11.EL3.src.rpm     5578f58aba103e1be4e73d6796c88be1
 
IA-32:
xterm-179-11.EL3.i386.rpm     cf15bd99236e209e185469c47b887303
 
IA-64:
xterm-179-11.EL3.ia64.rpm     58777e85e7e60a98710821fd65610a8d
 
PPC:
xterm-179-11.EL3.ppc.rpm     19e172c51f1dd8ebb8d6feea3b5d9f11
 
s390:
xterm-179-11.EL3.s390.rpm     38353066bbee9a7aa02da655104915b4
 
s390x:
xterm-179-11.EL3.s390x.rpm     0f90d514da33544325d7b2527bd13de1
 
x86_64:
xterm-179-11.EL3.x86_64.rpm     9486a03eff9ee1342547642038d88106
 
Red Hat Enterprise Linux AS (v. 4)
SRPMS:
xterm-192-8.el4_7.2.src.rpm     910185dcbd5b1cf4b5222d057b28e4c4
 
IA-32:
xterm-192-8.el4_7.2.i386.rpm     417c0994d3bff4ac7bb9dbba4bc9b5f1
 
IA-64:
xterm-192-8.el4_7.2.ia64.rpm     45dce7db588cb68602385d257a8d1d56
 
PPC:
xterm-192-8.el4_7.2.ppc.rpm     2b13343b80078dfeaa3cdc72a137ef5c
 
s390:
xterm-192-8.el4_7.2.s390.rpm     02250b41ecbe8a9ec68e2089e8b18359
 
s390x:
xterm-192-8.el4_7.2.s390x.rpm     a65d6157f1100e0061f8a206cbde430c
 
x86_64:
xterm-192-8.el4_7.2.x86_64.rpm     53cebce0379602127767862aa75ee2de
 
Red Hat Enterprise Linux AS (v. 4.7.z)
SRPMS:
xterm-192-8.el4_7.2.src.rpm     910185dcbd5b1cf4b5222d057b28e4c4
 
IA-32:
xterm-192-8.el4_7.2.i386.rpm     417c0994d3bff4ac7bb9dbba4bc9b5f1
 
IA-64:
xterm-192-8.el4_7.2.ia64.rpm     45dce7db588cb68602385d257a8d1d56
 
PPC:
xterm-192-8.el4_7.2.ppc.rpm     2b13343b80078dfeaa3cdc72a137ef5c
 
s390:
xterm-192-8.el4_7.2.s390.rpm     02250b41ecbe8a9ec68e2089e8b18359
 
s390x:
xterm-192-8.el4_7.2.s390x.rpm     a65d6157f1100e0061f8a206cbde430c
 
x86_64:
xterm-192-8.el4_7.2.x86_64.rpm     53cebce0379602127767862aa75ee2de
 
Red Hat Enterprise Linux Desktop (v. 5 client)
SRPMS:
xterm-215-5.el5_2.2.src.rpm
File outdated by:  RHBA-2009:0252		     9c13da42cf0b7514c68362b25caaec2e
 
IA-32:
xterm-215-5.el5_2.2.i386.rpm
File outdated by:  RHBA-2009:0252		     8606bd6bccdb889eeff361da43be3449
 
x86_64:
xterm-215-5.el5_2.2.x86_64.rpm
File outdated by:  RHBA-2009:0252		     9a9d9ee5a20f5ee604460aba3f4f0b6d
 
Red Hat Enterprise Linux ES (v. 3)
SRPMS:
xterm-179-11.EL3.src.rpm     5578f58aba103e1be4e73d6796c88be1
 
IA-32:
xterm-179-11.EL3.i386.rpm     cf15bd99236e209e185469c47b887303
 
IA-64:
xterm-179-11.EL3.ia64.rpm     58777e85e7e60a98710821fd65610a8d
 
x86_64:
xterm-179-11.EL3.x86_64.rpm     9486a03eff9ee1342547642038d88106
 
Red Hat Enterprise Linux ES (v. 4)
SRPMS:
xterm-192-8.el4_7.2.src.rpm     910185dcbd5b1cf4b5222d057b28e4c4
 
IA-32:
xterm-192-8.el4_7.2.i386.rpm     417c0994d3bff4ac7bb9dbba4bc9b5f1
 
IA-64:
xterm-192-8.el4_7.2.ia64.rpm     45dce7db588cb68602385d257a8d1d56
 
x86_64:
xterm-192-8.el4_7.2.x86_64.rpm     53cebce0379602127767862aa75ee2de
 
Red Hat Enterprise Linux ES (v. 4.7.z)
SRPMS:
xterm-192-8.el4_7.2.src.rpm     910185dcbd5b1cf4b5222d057b28e4c4
 
IA-32:
xterm-192-8.el4_7.2.i386.rpm     417c0994d3bff4ac7bb9dbba4bc9b5f1
 
IA-64:
xterm-192-8.el4_7.2.ia64.rpm     45dce7db588cb68602385d257a8d1d56
 
x86_64:
xterm-192-8.el4_7.2.x86_64.rpm     53cebce0379602127767862aa75ee2de
 
Red Hat Enterprise Linux EUS (v. 5.2.z server)
SRPMS:
xterm-215-5.el5_2.2.src.rpm
File outdated by:  RHBA-2009:0252		     9c13da42cf0b7514c68362b25caaec2e
 
IA-32:
xterm-215-5.el5_2.2.i386.rpm     8606bd6bccdb889eeff361da43be3449
 
IA-64:
xterm-215-5.el5_2.2.ia64.rpm     b7311021180aba9dee2314b01a838cdb
 
PPC:
xterm-215-5.el5_2.2.ppc.rpm     9c3ee19847b018b97dd92a6ad6608a73
 
s390x:
xterm-215-5.el5_2.2.s390x.rpm     1f3a5869318f3027820ca2e55ce54a90
 
x86_64:
xterm-215-5.el5_2.2.x86_64.rpm     9a9d9ee5a20f5ee604460aba3f4f0b6d
 
Red Hat Enterprise Linux WS (v. 3)
SRPMS:
xterm-179-11.EL3.src.rpm     5578f58aba103e1be4e73d6796c88be1
 
IA-32:
xterm-179-11.EL3.i386.rpm     cf15bd99236e209e185469c47b887303
 
IA-64:
xterm-179-11.EL3.ia64.rpm     58777e85e7e60a98710821fd65610a8d
 
x86_64:
xterm-179-11.EL3.x86_64.rpm     9486a03eff9ee1342547642038d88106
 
Red Hat Enterprise Linux WS (v. 4)
SRPMS:
xterm-192-8.el4_7.2.src.rpm     910185dcbd5b1cf4b5222d057b28e4c4
 
IA-32:
xterm-192-8.el4_7.2.i386.rpm     417c0994d3bff4ac7bb9dbba4bc9b5f1
 
IA-64:
xterm-192-8.el4_7.2.ia64.rpm     45dce7db588cb68602385d257a8d1d56
 
x86_64:
xterm-192-8.el4_7.2.x86_64.rpm     53cebce0379602127767862aa75ee2de
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

478888 - CVE-2008-2383 xterm: arbitrary command injection


References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2383
http://www.redhat.com/security/updates/classification/#important

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/