NewStart CGSL MAIN 6.06 (SP) : ncurses Multiple Vulnerabilities (NS-SA-2026-0020)

The remote NewStart CGSL host, running version MAIN 6.06 SP, has ncurses packages installed that are affected by multiple vulnerabilities: - In ncurses 6.0, there is a format string vulnerability in the fmtentry function. A crafted input will lead to a remote arbitrary code execution attack...

NewStart CGSL MAIN 6.06 : ncurses Multiple Vulnerabilities (NS-SA-2025-0223)

The remote NewStart CGSL host, running version MAIN 6.06, has ncurses packages installed that are affected by multiple vulnerabilities: - In ncurses 6.0, there is a format string vulnerability in the fmtentry function. A crafted input will lead to a remote arbitrary code execution attack...

CentOS 9 : ncurses-6.2-12.20210508.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ncurses-6.2-12.20210508.el9 build changelog. - ncurses before 6.4 20230408, when used by a setuid application, allows local users to trigger security- relevant memory corruptio...

USN-6099-1 ncurses vulnerabilities

It was discovered that ncurses was incorrectly performing bounds checks when processing invalid hashcodes. An attacker could possibly use this issue to cause a denial of service or to expose sensitive information. This issue only affected Ubuntu 18.04 LTS. CVE-2019-17594 It was discovered that...

Medium: ncurses

Issue Overview: The ncurses package tic is susceptible to a heap overflow on crafted input. When the terminfo entry-description compiler processes input, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is system availability...

Ubuntu 16.04 ESM : ncurses vulnerabilities (USN-5477-1)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5477-1 advisory. Hosein Askari discovered that ncurses was incorrectly performing memory management operations when dealing with long filenames while writing structures...

SUSE-SU-2019:3094-1 Security update for ncurses

This update for ncurses fixes the following issues: Security issue fixed: - CVE-2018-10754: Fixed a denial of service caused by a NULL Pointer Dereference in the ncparseentry bsc1131830. - CVE-2019-17594: Fixed a heap-based buffer over-read in ncfindentry function in tinfo/comphash.c bsc1154036. ...

SUSE-SU-2018:0284-1 Security update for ncurses

This update for ncurses fixes several issues. These security issues were fixed: - CVE-2017-13734: Prevent illegal address access in the ncsafestrcat function in strings.c that might have lead to a remote denial of service attack bsc1056126. - CVE-2017-13733: Prevent illegal address access in the...

ncurses buffer overflows

OVERVIEW The CRT screen handling library ncurses contains buffer overflows, making programs using it vulnerable. If the programs are setuid or setgid, a local user may elevate their privilege. The problem exists in ncurses versions 4.2 and 5.0, probably earlier, and libocurses. The overflows can ...