Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bracketed Paste vulnerability, end sequence in payload not escaped #1095

Open
krishjainx opened this issue Jan 9, 2024 · 0 comments
Open

Bracketed Paste vulnerability, end sequence in payload not escaped #1095

krishjainx opened this issue Jan 9, 2024 · 0 comments
Labels
enhancement

Comments

@krishjainx
Copy link

What Operating System(s) are you seeing this problem on?

Linux Wayland

Which Wayland compositor or X11 Window manager(s) are you using?

Mutter

QTerminal version

1.3.0

Describe the bug

If the text you're pasting happens to contain the same sequence of characters that the terminal uses to signify the end of a paste operation, it might prematurely signal the end of the paste. This could cause the remaining part of the pasted text to be interpreted as if it were manually typed, leading to unexpected behavior.

See the second payload here: https://thejh.net/misc/website-terminal-copy-paste from Jann Horn (@thejh) of Google's Project Zero

To Reproduce

https://thejh.net/misc/website-terminal-copy-paste

Payload that is problematic:

  • 2nd in link

Configuration

no config

Expected Behavior

The expected behavior of the terminal is to escape the end sequences in the payload, so that bash will not interpret those as the actual end sequence .

Logs

No response

Anything else?

gnome-terminal, wezterm, konsole, terminator etc aren't vulnerable to this issue.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@yan12125 @krishjainx