CVE-2017-10685

Опубликовано: 24 июн. 2017

Источник: redhat

CVSS3: 0

Описание

In ncurses 6.0, there is a format string vulnerability in the fmt_entry function. A crafted input will lead to a remote arbitrary code execution attack.

Отчет

Red Hat considers this issue as a duplicate of CVE-2017-10684.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	ncurses	Will not fix
Red Hat Enterprise Linux 6	ncurses	Will not fix
Red Hat Enterprise Linux 7	ncurses	Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

https://bugzilla.redhat.com/show_bug.cgi?id=1473312ncurses: Stack-based buffer overflow caused by format string vulnerability in fmt_entry function

0 Low

CVSS3

Связанные уязвимости

CVE-2017-10685

CVSS3: 9.8

ubuntu

больше 8 лет назад

In ncurses 6.0, there is a format string vulnerability in the fmt_entry function. A crafted input will lead to a remote arbitrary code execution attack.

CVE-2017-10685

CVSS3: 9.8

nvd

больше 8 лет назад

In ncurses 6.0, there is a format string vulnerability in the fmt_entry function. A crafted input will lead to a remote arbitrary code execution attack.

CVE-2017-10685

CVSS3: 9.8

debian

больше 8 лет назад

In ncurses 6.0, there is a format string vulnerability in the fmt_entr ...

GHSA-67w6-7r3q-87w7

CVSS3: 9.8

github

больше 3 лет назад

In ncurses 6.0, there is a format string vulnerability in the fmt_entry function. A crafted input will lead to a remote arbitrary code execution attack.

openSUSE-SU-2017:1882-1

suse-cvrf

больше 8 лет назад

Recommended update for ncurses

0 Low

CVSS3