Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Ncurses
(Gnu)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 27 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-08-22 | CVE-2020-19189 | Buffer Overflow vulnerability in postprocess_terminfo function in tinfo/parse_entry.c:997 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. | Debian_linux, Ncurses, Active_iq_unified_manager | 6.5 | ||
| 2023-08-22 | CVE-2020-19190 | Buffer Overflow vulnerability in _nc_find_entry in tinfo/comp_hash.c:70 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command. | Ncurses, Active_iq_unified_manager | 6.5 | ||
| 2018-11-12 | CVE-2018-19217 | In ncurses, possibly a 6.x version, there is a NULL pointer dereference at the function _nc_name_match that will lead to a denial of service attack. NOTE: the original report stated version 6.1, but the issue did not reproduce for that version according to the maintainer or a reliable third-party | Ncurses | 6.5 | ||
| 2017-06-29 | CVE-2017-10684 | In ncurses 6.0, there is a stack-based buffer overflow in the fmt_entry function. A crafted input will lead to a remote arbitrary code execution attack. | Ncurses | 9.8 | ||
| 2017-08-29 | CVE-2017-13728 | There is an infinite loop in the next_char function in comp_scan.c in ncurses 6.0, related to libtic. A crafted input will lead to a remote denial of service attack. | Ncurses | 7.5 | ||
| 2017-08-29 | CVE-2017-13729 | There is an illegal address access in the _nc_save_str function in alloc_entry.c in ncurses 6.0. It will lead to a remote denial of service attack. | Ncurses | 6.5 | ||
| 2017-08-29 | CVE-2017-13730 | There is an illegal address access in the function _nc_read_entry_source() in progs/tic.c in ncurses 6.0 that might lead to a remote denial of service attack. | Ncurses | 6.5 | ||
| 2017-08-29 | CVE-2017-13731 | There is an illegal address access in the function postprocess_termcap() in parse_entry.c in ncurses 6.0 that will lead to a remote denial of service attack. | Ncurses | 6.5 | ||
| 2017-08-29 | CVE-2017-13732 | There is an illegal address access in the function dump_uses() in progs/dump_entry.c in ncurses 6.0 that might lead to a remote denial of service attack. | Ncurses | 6.5 | ||
| 2017-08-29 | CVE-2017-13733 | There is an illegal address access in the fmt_entry function in progs/dump_entry.c in ncurses 6.0 that might lead to a remote denial of service attack. | Ncurses | 6.5 |