SUSE-SU-2018:0284-1 -- SLES ncurses-debugsource, libncurses5, libncurses6, ncurses-devel, ncurses-utils, tack, terminfoID: oval:org.secpod.oval:def:89043623 | Date: (C)2021-03-05 (M)2022-10-10 |
Class: PATCH | Family: unix |
This update for ncurses fixes several issues. These security issues were fixed: - CVE-2017-13734: Prevent illegal address access in the _nc_safe_strcat function in strings.c that might have lead to a remote denial of service attack . - CVE-2017-13733: Prevent illegal address access in the fmt_entry function in progs/dump_entry.c that might have lead to a remote denial of service attack . - CVE-2017-13732: Prevent illegal address access in the function dump_uses in progs/dump_entry.c that might have lead to a remote denial of service attack . - CVE-2017-13731: Prevent illegal address access in the function postprocess_termcap in parse_entry.c that might have lead to a remote denial of service attack . - CVE-2017-13730: Prevent illegal address access in the function _nc_read_entry_source in progs/tic.c that might have lead to a remote denial of service attack . - CVE-2017-13729: Prevent illegal address access in the _nc_save_str function in alloc_entry.c that might have lead to a remote denial of service attack . - CVE-2017-13728: Prevent infinite loop in the next_char function in comp_scan.c that might have lead to a remote denial of service attack .
Platform: |
SUSE Linux Enterprise Server 12 SP3 |
SUSE Linux Enterprise Server 12 SP2 |
Product: |
ncurses-debugsource |
libncurses5 |
libncurses6 |
ncurses-devel |
ncurses-utils |
tack |
terminfo |