{"id":"JLSEC-2026-528","details":"In tmux before version 3.1c the function input_csi_dispatch_sgr_colon() in file input.c contained a stack-based buffer-overflow that can be exploited by terminal output.","modified":"2026-05-26T14:45:03.469615142Z","published":"2026-05-26T14:33:40.979Z","upstream":["CVE-2020-27347"],"database_specific":{"sources":[{"imported":"2026-05-23T01:04:01.855Z","modified":"2024-11-21T05:21:02.433Z","id":"CVE-2020-27347","url":"https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2020-27347","html_url":"https://nvd.nist.gov/vuln/detail/CVE-2020-27347","published":"2020-11-06T03:15:17.137Z","database_specific":{"status":"Modified"}}],"license":"CC-BY-4.0"},"references":[{"type":"WEB","url":"https://github.com/tmux/tmux/commit/a868bacb46e3c900530bed47a1c6f85b0fbe701c"},{"type":"WEB","url":"https://github.com/tmux/tmux/commit/a868bacb46e3c900530bed47a1c6f85b0fbe701c"},{"type":"WEB","url":"https://raw.githubusercontent.com/tmux/tmux/3.1c/CHANGES"},{"type":"WEB","url":"https://raw.githubusercontent.com/tmux/tmux/3.1c/CHANGES"},{"type":"WEB","url":"https://security.gentoo.org/glsa/202011-10"},{"type":"WEB","url":"https://security.gentoo.org/glsa/202011-10"},{"type":"WEB","url":"https://www.openwall.com/lists/oss-security/2020/11/05/3"},{"type":"WEB","url":"https://www.openwall.com/lists/oss-security/2020/11/05/3"}],"affected":[{"package":{"name":"tmux_jll","ecosystem":"Julia","purl":"pkg:julia/tmux_jll?uuid=558ad2b7-f92e-50c4-8d35-b0432ac1efd4"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"3.3.0+0"}]}],"database_specific":{"source":"https://github.com/JuliaLang/SecurityAdvisories.jl/tree/generated/osv/2026/JLSEC-2026-528.json"}}],"schema_version":"1.7.5"}