Gnu: >> Ncurses >> 6.0 Security Vulnerabilities
There is an illegal address access in the function dump_uses() in progs/dump_entry.c in ncurses 6.0 that might lead to a remote denial of service attack.
CVSS Score
6.5
EPSS Score
0.003
Published
2017-08-29
There is an illegal address access in the fmt_entry function in progs/dump_entry.c in ncurses 6.0 that might lead to a remote denial of service attack.
CVSS Score
6.5
EPSS Score
0.004
Published
2017-08-29
There is an illegal address access in the _nc_safe_strcat function in strings.c in ncurses 6.0 that will lead to a remote denial of service attack.
CVSS Score
6.5
EPSS Score
0.002
Published
2017-08-29
In ncurses 6.0, there is an attempted 0xffffffffffffffff access in the append_acs function of tinfo/parse_entry.c. It could lead to a remote denial of service attack if the terminfo library code is used to process untrusted terminfo data.
CVSS Score
7.5
EPSS Score
0.003
Published
2017-07-08
In ncurses 6.0, there is a NULL Pointer Dereference in the _nc_parse_entry function of tinfo/parse_entry.c. It could lead to a remote denial of service attack if the terminfo library code is used to process untrusted terminfo data.
CVSS Score
7.5
EPSS Score
0.003
Published
2017-07-08
In ncurses 6.0, there is a stack-based buffer overflow in the fmt_entry function. A crafted input will lead to a remote arbitrary code execution attack.
CVSS Score
9.8
EPSS Score
0.032
Published
2017-06-29
In ncurses 6.0, there is a format string vulnerability in the fmt_entry function. A crafted input will lead to a remote arbitrary code execution attack.
CVSS Score
9.8
EPSS Score
0.011
Published
2017-06-29
Page 2