malicious escape sequence causes gnome-terminal to exhaust memory
Submitted by Josselin Mouette
Link to original bug (#652124)
Description
[ Original report: http://bugs.debian.org/629688 by “vladz” ]
When passing a huge value to the "insert-blank-characters" capability (defined in caps.c), gnome-terminal crashes (and maybe other terminals that depend on libvte9).
$ cat -n vte-0.24.3/src/caps.c: [...] 418 {CSI "%d@", "insert-blank-characters", 0},
To reproduce the crash: printf "\033[100000000000000000@"
This causes the terminal to consume all available memory.
Version: 0.24.x
Resolution: RESOLVED FIXED