-------------------------------------------------------------------------------- Fedora EPEL Update Notification FEDORA-EPEL-2021-969456590e 2021-06-08 00:41:32.537796 --------------------------------------------------------------------------------

Name : rxvt-unicode Product : Fedora EPEL 7 Version : 9.21 Release : 4.el7 URL : http://software.schmorp.de/ Summary : Unicode version of rxvt Description : rxvt-unicode is a clone of the well known terminal emulator rxvt, modified to store text in Unicode (either UCS-2 or UCS-4) and to use locale-correct input and output. It also supports mixing multiple fonts at the same time, including Xft fonts.

-------------------------------------------------------------------------------- Update Information:

- Fixes [CVE-2021-33477](https://nvd.nist.gov/vuln/detail/CVE-2021-33477) - conservatively, by disabling the escape sequences. -------------------------------------------------------------------------------- ChangeLog:

* Fri May 21 2021 Robbie Harwood rharwood@redhat.com - 9.21-4 - Patch for 2021-33477 - Note that 9.26 doesn't build on el7, so we can't update to it -------------------------------------------------------------------------------- References:

[ 1 ] Bug #1961797 - CVE-2021-33477 rxvt-unicode: possible remote code execution [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1961797 --------------------------------------------------------------------------------

This update can be installed with the "yum" update programs. Use su -c 'yum update rxvt-unicode' at the command line. For more information, refer to "YUM", available at https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7%5C /html/System_Administrators_Guide/ch-yum.html

All packages are signed with the Fedora EPEL GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------