Описание
ncurses before 6.4 20230408, when used by a setuid application, allows local users to trigger security-relevant memory corruption via malformed data in a terminfo database file that is found in $HOME/.terminfo or reached via the TERMINFO or TERM environment variable.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 6.1-1ubuntu1.18.04.1 |
| devel | not-affected | 6.4-4 |
| esm-infra-legacy/trusty | not-affected | 5.9+20140118-1ubuntu1+esm3 |
| esm-infra/bionic | not-affected | 6.1-1ubuntu1.18.04.1 |
| esm-infra/focal | not-affected | 6.2-0ubuntu2.1 |
| esm-infra/xenial | released | 6.0+20160213-1ubuntu1+esm3 |
| focal | released | 6.2-0ubuntu2.1 |
| jammy | released | 6.3-2ubuntu0.1 |
| kinetic | released | 6.3+20220423-2ubuntu0.1 |
| lunar | released | 6.4-2ubuntu0.1 |
Показывать по
EPSS
7.8 High
CVSS3
Связанные уязвимости
ncurses before 6.4 20230408, when used by a setuid application, allows local users to trigger security-relevant memory corruption via malformed data in a terminfo database file that is found in $HOME/.terminfo or reached via the TERMINFO or TERM environment variable.
ncurses before 6.4 20230408, when used by a setuid application, allows local users to trigger security-relevant memory corruption via malformed data in a terminfo database file that is found in $HOME/.terminfo or reached via the TERMINFO or TERM environment variable.
ncurses before 6.4 20230408, when used by a setuid application, allows ...
EPSS
7.8 High
CVSS3