JLSEC-2026-442

In ncurses 6.1, there is a NULL pointer dereference at function ncparseentry in parseentry.c that will lead to a denial of service attack. The product proceeds to the dereference code path even after a "dubious character ' in name or alias field" detection...

JLSEC-2026-454 A vulnerability has been found in GNU ncurses up to 6.5-20250322 and classified as problematic....

A vulnerability has been found in GNU ncurses up to 6.5-20250322 and classified as problematic. This vulnerability affects the function postprocesstermcap of the file tinfo/parseentry.c. The manipulation leads to stack-based buffer overflow. The attack needs to be approached locally. Upgrading to...

Astra Linux - уязвимость в ncurses

A buffer overflow vulnerability exists in the postprocessterminfo function in tinfo/parseentry.c:997 within ncurses 6.1. This vulnerability allows remote attackers to cause a denial of service by using crafted commands...

EulerOS Virtualization 2.10.0 : ncurses (EulerOS-SA-2026-1183)

According to the versions of the ncurses packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A vulnerability has been found in GNU ncurses up to 6.5-20250322 and classified as problematic. This vulnerability affects the...

EulerOS 2.0 SP13 : ncurses (EulerOS-SA-2025-2272)

According to the versions of the ncurses packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability has been found in GNU ncurses up to 6.5-20250322 and classified as problematic. This vulnerability affects the function...

EUVD-2020-15438

Malware in sbrugna...

GNU ncurses parse_entry.c postprocess_termcap stack-based overflow

...

Linux Distros Unpatched Vulnerability : CVE-2025-6141

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability has been found in GNU ncurses up to 6.5-20250322 and classified as problematic. This vulnerability affects the function postprocesstermcap of th...

Stack-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Stack-based Buffer Overflow via the postprocesstermcap function in the parseentry.c file. An attacker can cause a crash or disrupt normal operation by providing specially crafted input. Remediation Upgrade ncurses to version 6.5 or...

DEBIAN-CVE-2025-6141

A vulnerability has been found in GNU ncurses up to 6.5-20250322 and classified as problematic. This vulnerability affects the function postprocesstermcap of the file tinfo/parseentry.c. The manipulation leads to stack-based buffer overflow. The attack needs to be approached locally. Upgrading to...

UBUNTU-CVE-2025-6141

A vulnerability has been found in GNU ncurses up to 6.5-20250322 and classified as problematic. This vulnerability affects the function postprocesstermcap of the file tinfo/parseentry.c. The manipulation leads to stack-based buffer overflow. The attack needs to be approached locally. Upgrading to...

CLSA-2024-1716272110 ncurses: Fix of CVE-2023-50495

CVE-2023-50495: check return value of ncsavestr from upstream patch 20230424, add validity checks in ncparseentry from upstream patch 20170826...

ncurses 缓冲区错误漏洞

ncurses is a character terminal processing library that provides a set of functions that can be called by the user to generate a text-based user interface. A security vulnerability exists in ncurses version 6.1 due to a buffer overflow in the postprocessterminfo method of tinfo/parseentry.c. The...

SUSE CVE-2017-11112

In ncurses 6.0, there is an attempted 0xffffffffffffffff access in the appendacs function of tinfo/parseentry.c. It could lead to a remote denial of service attack if the terminfo library code is used to process untrusted terminfo data...

SUSE CVE-2017-11113

In ncurses 6.0, there is a NULL Pointer Dereference in the ncparseentry function of tinfo/parseentry.c. It could lead to a remote denial of service attack if the terminfo library code is used to process untrusted terminfo data...

SUSE CVE-2018-19211

In ncurses 6.1, there is a NULL pointer dereference at function ncparseentry in parseentry.c that will lead to a denial of service attack. The product proceeds to the dereference code path even after a "dubious character ' in name or alias field" detection...

DEBIAN-CVE-2020-22679

Memory leak in the sgpdparseentry function in MP4Box in gpac 0.8.0 allows attackers to cause a denial of service DoS via a crafted input...

DEBIAN-CVE-2018-19211

In ncurses 6.1, there is a NULL pointer dereference at function ncparseentry in parseentry.c that will lead to a denial of service attack. The product proceeds to the dereference code path even after a "dubious character ' in name or alias field" detection...

UBUNTU-CVE-2018-19211

In ncurses 6.1, there is a NULL pointer dereference at function ncparseentry in parseentry.c that will lead to a denial of service attack. The product proceeds to the dereference code path even after a "dubious character ' in name or alias field" detection...

Libmobi Information Disclosure Vulnerability (CNVD-2018-16956)

Libmobi is used to process Mobipocket/Kindle MOBI e-book format document C library . An information disclosure vulnerability exists in the mobiparseindexentry function in index.c in Libmobi version 0.3. A remote attacker can exploit this vulnerability to obtain information via specially crafted...