CVE-2020-19188

Опубликовано: 22 авг. 2023

Источник: debian

Описание

Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1116 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
ncurses	fixed	6.1+20191019-1		package
ncurses	fixed	6.1+20181013-2+deb10u2	buster	package

Примечания

https://github.com/zjuchenyuan/fuzzpoc/blob/master/infotocap_poc4.md
Fixed in 20191012 with followups in 20191015 and 20191019 patchlevels
https://lists.gnu.org/archive/html/bug-ncurses/2019-10/index.html

Связанные уязвимости

CVE-2020-19188

CVSS3: 6.5

ubuntu

больше 2 лет назад

Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1116 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command.

CVE-2020-19188

CVSS3: 6.5

redhat

почти 7 лет назад

Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1116 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command.

CVE-2020-19188

CVSS3: 6.5

nvd

больше 2 лет назад

Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1116 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command.

GHSA-8jj7-mqrc-fff9

CVSS3: 6.5

github

больше 2 лет назад

Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1116 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command.