This bug was fixed in the package htop - 0.8-0ubuntu1.1 --------------- htop (0.8-0ubuntu1.1) intrepid-security; urgency=low
* SECURITY UPDATE: Insufficient character filters in htop when displaying commands allowed programs that rewrite their program name to inject escape sequences. (LP: #299627) - CVE-2008-5076 - Patch taken from upstream svn rev 148; applied inline. -- Andreas Wenning <a...@awen.dk> Tue, 07 Apr 2009 17:34:27 +0200 -- [CVE-2008-5076] htop does not filter non-printable characters in process names https://bugs.launchpad.net/bugs/299627 You received this bug notification because you are a member of Ubuntu Bugs, which is a direct subscriber. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs