CVE-2017-13728

Опубликовано: 23 авг. 2017

Источник: redhat

CVSS3: 3.3

EPSS Низкий

Описание

There is an infinite loop in the next_char function in comp_scan.c in ncurses 6.0, related to libtic. A crafted input will lead to a remote denial of service attack.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	ncurses	Will not fix
Red Hat Enterprise Linux 6	ncurses	Will not fix
Red Hat Enterprise Linux 7	ncurses	Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-835

https://bugzilla.redhat.com/show_bug.cgi?id=1488915ncurses: Infinite loop in the next_char function

EPSS

Процентиль: 53%

0.00307

Низкий

3.3 Low

CVSS3

Связанные уязвимости

CVE-2017-13728

CVSS3: 7.5

ubuntu

больше 8 лет назад

There is an infinite loop in the next_char function in comp_scan.c in ncurses 6.0, related to libtic. A crafted input will lead to a remote denial of service attack.

CVE-2017-13728

CVSS3: 7.5

nvd

больше 8 лет назад

There is an infinite loop in the next_char function in comp_scan.c in ncurses 6.0, related to libtic. A crafted input will lead to a remote denial of service attack.

CVE-2017-13728

CVSS3: 7.5

debian

больше 8 лет назад

There is an infinite loop in the next_char function in comp_scan.c in ...

GHSA-8qvv-3q23-2876

CVSS3: 7.5

github

больше 3 лет назад

There is an infinite loop in the next_char function in comp_scan.c in ncurses 6.0, related to libtic. A crafted input will lead to a remote denial of service attack.

openSUSE-SU-2018:0159-1

suse-cvrf

около 8 лет назад

Security update for ncurses

EPSS

Процентиль: 53%

0.00307

Низкий

3.3 Low

CVSS3