pkg:Debian/ncurses

32 total CVEsCRITICAL2HIGH10MEDIUM18

✅ Check your installed version

All known vulnerabilities

  • CRITICAL9.8CVE-2017-10685In ncurses 6.0, there is a format string vulnerability in the fmt_entry function.
    from 0, < 6.0+20170701-1
  • CRITICAL9.8CVE-2017-10684In ncurses 6.0, there is a stack-based buffer overflow in the fmt_entry function.
    from 0, < 6.0+20170708-1
  • HIGH8.8CVE-2021-39537ncurses - security update
    from 0, < 6.1+20181013-2+deb10u5
  • HIGH8.8CVE-2021-39537ncurses - security update
    from 0, < 6.2+20200912-1
  • HIGH7.8CVE-2025-69720The infocmp command-line tool in ncurses before 6.5-20251213 has a stack-based buffer overflow in analyze_string in progs/infocmp.c.
    from 0
  • HIGH7.8CVE-2023-29491ncurses before 6.4 20230408, when used by a setuid application, allows local users to trigger security-relevant memory corruption via malfo…
    from 0, < 6.2+20201114-2+deb11u2
  • HIGH7.8CVE-2017-16879Stack-based buffer overflow in the _nc_write_entry function in tinfo/write_entry.c in ncurses 6.0 allows attackers to cause a denial of ser…
    from 0, < 6.0+20171125-1
  • HIGH7.5CVE-2017-13728There is an infinite loop in the next_char function in comp_scan.c in ncurses 6.0, related to libtic.
    from 0, < 6.0+20170827-1
  • HIGH7.5CVE-2017-11113In ncurses 6.0, there is a NULL Pointer Dereference in the _nc_parse_entry function of tinfo/parse_entry.c.
    from 0, < 6.0+20170701-1
  • HIGH7.5CVE-2017-11112In ncurses 6.0, there is an attempted 0xffffffffffffffff access in the append_acs function of tinfo/parse_entry.c.
    from 0, < 6.0+20170701-1
  • HIGH7.1CVE-2022-29458ncurses - security update
    from 0, < 6.1+20181013-2+deb10u3
  • HIGH7.1CVE-2022-29458ncurses - security update
    from 0, < 6.2+20201114-2+deb11u1
  • MEDIUM6.5CVE-2023-50495NCurse v6.4-20230418 was discovered to contain a segmentation fault via the component _nc_wrap_entry().
    from 0
  • MEDIUM6.5CVE-2020-19190Buffer Overflow vulnerability in _nc_find_entry in tinfo/comp_hash.c:70 in ncurses 6.1 allows remote attackers to cause a denial of service…
    from 0, < 6.1+20191019-1
  • MEDIUM6.5CVE-2020-19189ncurses - security update
    from 0, < 6.1+20191019-1
  • MEDIUM6.5CVE-2020-19189ncurses - security update
    from 0, < 6.1+20181013-2+deb10u4
  • MEDIUM6.5CVE-2020-19188Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1116 in ncurses 6.1 allows remote attackers to cause a denial of…
    from 0, < 6.1+20191019-1
  • MEDIUM6.5CVE-2020-19187Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1100 in ncurses 6.1 allows remote attackers to cause a denial of…
    from 0, < 6.1+20191019-1
  • MEDIUM6.5CVE-2020-19186Buffer Overflow vulnerability in _nc_find_entry function in tinfo/comp_hash.c:66 in ncurses 6.1 allows remote attackers to cause a denial o…
    from 0, < 6.1+20191019-1
  • MEDIUM6.5CVE-2020-19185Buffer Overflow vulnerability in one_one_mapping function in progs/dump_entry.c:1373 in ncurses 6.1 allows remote attackers to cause a deni…
    from 0, < 6.1+20191019-1
  • MEDIUM6.5CVE-2018-19217In ncurses, possibly a 6.x version, there is a NULL pointer dereference at the function _nc_name_match that will lead to a denial of servic…
    from 0, < 6.0+20170701-1
  • MEDIUM6.5CVE-2017-13734There is an illegal address access in the _nc_safe_strcat function in strings.c in ncurses 6.0 that will lead to a remote denial of service…
    from 0, < 6.0+20170827-1
  • MEDIUM6.5CVE-2017-13733There is an illegal address access in the fmt_entry function in progs/dump_entry.c in ncurses 6.0 that might lead to a remote denial of ser…
    from 0, < 6.0+20170902-1
  • MEDIUM6.5CVE-2017-13732There is an illegal address access in the function dump_uses() in progs/dump_entry.c in ncurses 6.0 that might lead to a remote denial of s…
    from 0, < 6.0+20170827-1
  • MEDIUM6.5CVE-2017-13731There is an illegal address access in the function postprocess_termcap() in parse_entry.c in ncurses 6.0 that will lead to a remote denial…
    from 0, < 6.0+20170827-1
  • MEDIUM6.5CVE-2017-13730There is an illegal address access in the function _nc_read_entry_source() in progs/tic.c in ncurses 6.0 that might lead to a remote denial…
    from 0, < 6.0+20170827-1
  • MEDIUM6.5CVE-2017-13729There is an illegal address access in the _nc_save_str function in alloc_entry.c in ncurses 6.0.
    from 0, < 6.0+20170827-1
  • MEDIUM5.5CVE-2018-19211In ncurses 6.1, there is a NULL pointer dereference at function _nc_parse_entry in parse_entry.c that will lead to a denial of service atta…
    from 0, < 6.1+20180210-3
  • MEDIUM5.4CVE-2019-17595There is a heap-based buffer over-read in the fmt_entry function in tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-2019101…
    from 0, < 6.1+20191019-1
  • MEDIUM5.3CVE-2019-17594There is a heap-based buffer over-read in the _nc_find_entry function in tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-20…
    from 0, < 6.1+20191019-1
  • CVE-2025-6141A vulnerability has been found in GNU ncurses up to 6.5-20250322 and classified as problematic.
    from 0
  • CVE-2023-45918ncurses 6.4-20230610 has a NULL pointer dereference in tgetstr in tinfo/lib_termcap.c.
    from 0