- -----------------------------------------------------------------------
Debian LTS Advisory DLA-2558-2              [email protected]
https://www.debian.org/lts/security/                      Utkarsh Gupta
March 21, 2021                              https://wiki.debian.org/LTS
- -----------------------------------------------------------------------

Package        : xterm
Version        : 327-2+deb9u2
Debian Bug     : 984615

DLA 2558-2 backported a part of the upstream patch which fails
to deal with the realloc failures in Debian stretch. This update
reverts that part of the patch since it's not really needed and
just focuses on fixing CVE-2021-27135.

For Debian 9 stretch, this problem has been fixed in version
327-2+deb9u2.

We recommend that you upgrade your xterm packages.

For the detailed security status of xterm please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/xterm

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS