ncurses: Multiple vulnerabilities (CVE-2017-11112, CVE-2017-11113, CVE-2017-13728, CVE-2017-13729, CVE-2017-13730, CVE-2017-13731, CVE-2017-13732, CVE-2017-13733, CVE-2017-13734)
CVE-2017-11112: In ncurses 6.0, there is an attempted
0xffffffffffffffff access in the append_acs function of
tinfo/parse_entry.c.
It could lead to a remote denial of service attack if the terminfo
library code is used to process untrusted terminfo data.
Fixed In Version:
ncurses 6.0-20170701
References:
https://nvd.nist.gov/vuln/detail/CVE-2017-11112
CVE-2017-11113: In ncurses 6.0, there is a NULL Pointer Dereference
in the _nc_parse_entry function of tinfo/parse_entry.c.
It could lead to a remote denial of service attack if the terminfo
library code is used to process untrusted terminfo data.
Fixed In Version:
ncurses 6.0-20170701
References:
https://nvd.nist.gov/vuln/detail/CVE-2017-11113
CVE-2017-13728: There is an infinite loop in the next_char function
in comp_scan.c in ncurses 6.0, related to libtic.
A crafted input will lead to a remote denial of service attack.
References:
https://nvd.nist.gov/vuln/detail/CVE-2017-13728
CVE-2017-13729: There is an illegal address access in the
_nc_save_str function in alloc_entry.c
in ncurses 6.0. It will lead to a remote denial of service attack.
References:
https://nvd.nist.gov/vuln/detail/CVE-2017-13729
CVE-2017-13730: There is an illegal address access in the function
_nc_read_entry_source() in progs/tic.c
in ncurses 6.0 that might lead to a remote denial of service attack.
References:
https://nvd.nist.gov/vuln/detail/CVE-2017-13730
CVE-2017-13731: There is an illegal address access in the function
postprocess_termcap()
in parse_entry.c in ncurses 6.0 that will lead to a remote denial of
service attack.
References:
https://nvd.nist.gov/vuln/detail/CVE-2017-13731
CVE-2017-13732: There is an illegal address access in the function
dump_uses() in
progs/dump_entry.c in ncurses 6.0 that might lead to a remote denial of
service attack.
References:
https://nvd.nist.gov/vuln/detail/CVE-2017-13732
CVE-2017-13733: There is an illegal address access in the fmt_entry
function
in progs/dump_entry.c in ncurses 6.0 that might lead to a remote denial
of service attack.
References:
https://nvd.nist.gov/vuln/detail/CVE-2017-13733
CVE-2017-13734:There is an illegal address access in the
_nc_safe_strcat function
in strings.c in ncurses 6.0 that will lead to a remote denial of service
attack.
References:
https://nvd.nist.gov/vuln/detail/CVE-2017-13734
(from redmine: issue id 7966, created on 2017-10-04, closed on 2017-10-24)
- Relations:
- child #7967 (closed)
- child #7968 (closed)
- child #7969 (closed)
- child #7970 (closed)