Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -6 articles for you...
203
security advisorydenial of serviceservice issueMageia: 2022-0070 Moderate: rlwrap Buffer Overflow Vulnerability
rlwrap update fixes use of /tmp/rlwrap.debug causing a denial of service for other users on the same system. References: - https://bugs.mageia.org/show_bug.cgi?id=30036 . MGASA-2022-0069 - Updated rlwrap packages fix security vulnerability Publication date: 18 Feb 2022 URL: https://advisories.mageia.org/MGASA-2022-0069.html Type: security Affected Mageia releases: 8 rlwrap update fixes use of /tmp/rlwrap.debug causing a denial of service for other users on the same system. References: - https://bugs.mageia.org/show_bug.cgi?id=30036 - https://lists.fedoraproject.org/archives/list/
Feb 17, 2022
Mageia
89
security advisoryFedoracritical updateFedora 35: FEDORA-2022-1e3f95ba2e Urgent: rlwrap Command Line Patch
# New features: ## 0.45 - --only-cook '! ' enables confident mode where every possible prompt that matches a regexp is cooked immediately (so that even prompts that get printed while handling a large paste are cooked). - --no-children (-N) now enables direct mode whenever the client switches to the alternate screen. This makes editors and pagers usable even when . --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-15decf791f 2022-02-11 01:19:47.940167 --------------------------------------------------------------------------------Name : rlwrap Product : Fedora 35 Version : 0.45.2 Release : 1.fc35 URL : https://github.com/hanslub42/rlwrap Summary : Wrapper for GNU readline Description : rlwrap is a 'readline wrapper' that uses the GNU readline library to allow the editing of keyboard input for any other command. Input history is remembered across invocations, separately for each command; history completion and search work as in bash and completion word lists can be specified on the command line. --------------------------------------------------------------------------------Update Information: # New features: ## 0.45 - --only-cook '! ' enables confident mode where every possible prompt that matches a regexp is cooked immediately (so that even prompts that get printed while handling a large paste are cooked). - --no-children (-N) now enables direct mode whenever the client switches to the alternate screen. This makes editors and pagers usable even when using --always-readline on non-linux systems --always-echo echoes user input even when the client has switched off ECHO. - filter makefilter to easily employ shell commands (like sed, or grep) as rlwrap filters - filters can change (some) bindable and internal readline variables with a new RlwrapFilter method tweak_readline_oob() # Bug fixes: ## 0.45.2 - rlwrap enables bracketed-pastewhen instructed to do so by .inputrc, but would then never disable it at exit. - rlwrap -z (i.e. rlwrap when using a filter) would still open /tmp/rlwrap.debug after forking the filter command, preventing other users from running it afterwards ## 0.45.1 - rlwrap would always open /tmp/rlwrap.debug after forking child command, preventing other users from running it. - Fix args to setitimer() call to prevent EINVAL error on return -advise about --always-readline if in direct mode at first user ENTER keystroke -check for I_SWROPT even if isastream() is present (compile would fail on Oracle linux) ## 0.45 - rlwrap now correctly handles bracketed paste - --ansi-colour-aware (-A) didn't do anything at all. Now it recognises colour codes as well as common control codes like window titles. --------------------------------------------------------------------------------ChangeLog: * Wed Feb 2 2022 Michel Alexandre Salim 0.45.2-1 - Update to 0.45.2 * Fri Jan 21 2022 Fedora Release Engineering - 0.44-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild --------------------------------------------------------------------------------References: [ 1 ] Bug #1954693 - rlwrap compiled as debug, causing /tmp/rlwrap.debug to be written https://bugzilla.redhat.com/show_bug.cgi?id=1954693 [ 2 ] Bug #2044767 - Please build rlwrap for EPEL9 https://bugzilla.redhat.com/show_bug.cgi?id=2044767 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-15decf791f' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be foundat --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Feb 10, 2022
•Important
Fedora
89
security advisoryFedorabug fixFedora 34: 2022-8761120127 Moderate: rlwrap Input Handling Fixes
# New features: ## 0.45 - --only-cook '! ' enables confident mode where every possible prompt that matches a regexp is cooked immediately (so that even prompts that get printed while handling a large paste are cooked). - --no-children (-N) now enables direct mode whenever the client switches to the alternate screen. This makes editors and pagers usable even when . --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-8761120127 2022-02-11 01:09:44.265165 --------------------------------------------------------------------------------Name : rlwrap Product : Fedora 34 Version : 0.45.2 Release : 1.fc34 URL : https://github.com/hanslub42/rlwrap Summary : Wrapper for GNU readline Description : rlwrap is a 'readline wrapper' that uses the GNU readline library to allow the editing of keyboard input for any other command. Input history is remembered across invocations, separately for each command; history completion and search work as in bash and completion word lists can be specified on the command line. --------------------------------------------------------------------------------Update Information: # New features: ## 0.45 - --only-cook '! ' enables confident mode where every possible prompt that matches a regexp is cooked immediately (so that even prompts that get printed while handling a large paste are cooked). - --no-children (-N) now enables direct mode whenever the client switches to the alternate screen. This makes editors and pagers usable even when using --always-readline on non-linux systems --always-echo echoes user input even when the client has switched off ECHO. - filter makefilter to easily employ shell commands (like sed, or grep) as rlwrap filters - filters can change (some) bindable and internal readline variables with a new RlwrapFilter method tweak_readline_oob() # Bug fixes: ## 0.45.2 - rlwrap enables bracketed-pastewhen instructed to do so by .inputrc, but would then never disable it at exit. - rlwrap -z (i.e. rlwrap when using a filter) would still open /tmp/rlwrap.debug after forking the filter command, preventing other users from running it afterwards ## 0.45.1 - rlwrap would always open /tmp/rlwrap.debug after forking child command, preventing other users from running it. - Fix args to setitimer() call to prevent EINVAL error on return -advise about --always-readline if in direct mode at first user ENTER keystroke -check for I_SWROPT even if isastream() is present (compile would fail on Oracle linux) ## 0.45 - rlwrap now correctly handles bracketed paste - --ansi-colour-aware (-A) didn't do anything at all. Now it recognises colour codes as well as common control codes like window titles. --------------------------------------------------------------------------------ChangeLog: * Wed Feb 2 2022 Michel Alexandre Salim 0.45.2-1 - Update to 0.45.2 * Fri Jan 21 2022 Fedora Release Engineering - 0.44-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_36_Mass_Rebuild * Fri Jul 23 2021 Fedora Release Engineering - 0.44-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_35_Mass_Rebuild --------------------------------------------------------------------------------References: [ 1 ] Bug #1954693 - rlwrap compiled as debug, causing /tmp/rlwrap.debug to be written https://bugzilla.redhat.com/show_bug.cgi?id=1954693 [ 2 ] Bug #2044767 - Please build rlwrap for EPEL9 https://bugzilla.redhat.com/show_bug.cgi?id=2044767 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-8761120127' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project canbe found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Feb 10, 2022
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!