37 matches found
CVE-2020-19185
A flaw was found in the ncurses library. This issue occurs when processing a crafted terminfo database, causing a heap-based buffer overflow, resulting in an application crash. Mitigation Do not compile or decompile untrusted terminfo descriptions...
CVE-2020-19186
A flaw was found in the ncurses library. This issue occurs when processing a crafted terminfo database, causing a buffer over-read, resulting in an application crash. Mitigation Do not compile or decompile untrusted terminfo descriptions...
EulerOS Virtualization 2.10.0 : ncurses (EulerOS-SA-2023-2564)
According to the versions of the ncurses packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - ncurses before 6.4 20230408, when used by a setuid application, allows local users to trigger security- relevant memory corrupti...
Important: ncurses
Issue Overview: ncurses before 6.4 20230408, when used by a setuid application, allows local users to trigger security-relevant memory corruption via malformed data in a terminfo database file that is found in $HOME/.terminfo or reached via the TERMINFO or TERM environment variable. CVE-2023-2949...
EulerOS 2.0 SP10 : ncurses (EulerOS-SA-2023-2362)
According to the versions of the ncurses packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - ncurses before 6.4 20230408, when used by a setuid application, allows local users to trigger security- relevant memory corruption via malforme...
Important: ncurses
Issue Overview: ncurses before 6.4 20230408, when used by a setuid application, allows local users to trigger security-relevant memory corruption via malformed data in a terminfo database file that is found in $HOME/.terminfo or reached via the TERMINFO or TERM environment variable. CVE-2023-2949...
SUSE SLES12: libncurses5 / libncurses5-32bit / libncurses6 / libncurses6-32bit / etc (SUSE-SU-2023:2112-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:2112-1 advisory. - CVE-2023-29491: Fixed memory corruption issues when processing malformed terminfo data bsc1210434. Tenable has extracted the preceding...
CVE-2023-29491
A vulnerability was found in ncurses and occurs when used by a setuid application. This flaw allows local users to trigger security-relevant memory corruption via malformed data in a terminfo database file found in $HOME/.terminfo or reached via the TERMINFO or TERM environment variable...
CVE-2023-29491
ncurses before 6.4 20230408, when used by a setuid application, allows local users to trigger security-relevant memory corruption via malformed data in a terminfo database file that is found in $HOME/.terminfo or reached via the TERMINFO or TERM environment variable...
Memory corruption
ncurses before 6.4 20230408, when used by a setuid application, allows local users to trigger security-relevant memory corruption via malformed data in a terminfo database file that is found in $HOME/.terminfo or reached via the TERMINFO or TERM environment variable...
CVE-2023-29491
ncurses before 6.4 20230408, when used by a setuid application, allows local users to trigger security-relevant memory corruption via malformed data in a terminfo database file that is found in $HOME/.terminfo or reached via the TERMINFO or TERM environment variable...
CVE-2023-29491
ncurses before 6.4 20230408, when used by a setuid application, allows local users to trigger security-relevant memory corruption via malformed data in a terminfo database file that is found in $HOME/.terminfo or reached via the TERMINFO or TERM environment variable...
CVE-2023-29491
ncurses before 6.4 20230408, when used by a setuid application, allows local users to trigger security-relevant memory corruption via malformed data in a terminfo database file that is found in $HOME/.terminfo or reached via the TERMINFO or TERM environment variable...
OPENSUSE-SU-2019:2551-1 Security update for ncurses
This update for ncurses fixes the following issues: Security issues fixed: - CVE-2019-17594: Fixed a heap-based buffer over-read in the ncfindentry function bsc1154036. - CVE-2019-17595: Fixed a heap-based buffer over-read in the fmtentry function bsc1154037. Non-security issue fixed: - Removed...
OPENSUSE-SU-2019:2550-1 Security update for ncurses
This update for ncurses fixes the following issues: Security issues fixed: - CVE-2019-17594: Fixed a heap-based buffer over-read in the ncfindentry function bsc1154036. - CVE-2019-17595: Fixed a heap-based buffer over-read in the fmtentry function bsc1154037. Non-security issue fixed: - Removed...
SUSE SLED15 / SLES15 Security Update : ncurses (SUSE-SU-2019:2997-1)
This update for ncurses fixes the following issues : Security issues fixed : CVE-2019-17594: Fixed a heap-based buffer over-read in the ncfindentry function bsc1154036. CVE-2019-17595: Fixed a heap-based buffer over-read in the fmtentry function bsc1154037. Non-security issue fixed: Removed...
SUSE-SU-2019:2997-1 Security update for ncurses
This update for ncurses fixes the following issues: Security issues fixed: - CVE-2019-17594: Fixed a heap-based buffer over-read in the ncfindentry function bsc1154036. - CVE-2019-17595: Fixed a heap-based buffer over-read in the fmtentry function bsc1154037. Non-security issue fixed: - Removed...