OpenCVE

Filtered by vendor Gnu Subscriptions

Filtered by product Ncurses Subscriptions

Total 27 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2020-19190	2 Gnu, Netapp	2 Ncurses, Active Iq Unified Manager	2024-08-04	6.5 Medium
Buffer Overflow vulnerability in _nc_find_entry in tinfo/comp_hash.c:70 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command.
CVE-2020-19188	2 Gnu, Netapp	2 Ncurses, Active Iq Unified Manager	2024-08-04	6.5 Medium
Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1116 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command.
CVE-2020-19185	2 Gnu, Netapp	2 Ncurses, Active Iq Unified Manager	2024-08-04	6.5 Medium
Buffer Overflow vulnerability in one_one_mapping function in progs/dump_entry.c:1373 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command.
CVE-2020-19187	2 Gnu, Netapp	2 Ncurses, Active Iq Unified Manager	2024-08-04	6.5 Medium
Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1100 in ncurses 6.1 allows remote attackers to cause a denial of service via crafted command.
CVE-2021-39537	2 Apple, Gnu	3 Mac Os X, Macos, Ncurses	2024-08-04	8.8 High
An issue was discovered in ncurses through v6.2-1. _nc_captoinfo in captoinfo.c has a heap-based buffer overflow.
CVE-2022-29458	3 Apple, Debian, Gnu	3 Macos, Debian Linux, Ncurses	2024-08-03	7.1 High
ncurses 6.3 before patch 20220416 has an out-of-bounds read and segmentation violation in convert_strings in tinfo/read_entry.c in the terminfo library.
CVE-2023-29491	2 Gnu, Redhat	3 Ncurses, Enterprise Linux, Rhel Eus	2024-08-02	7.8 High
ncurses before 6.4 20230408, when used by a setuid application, allows local users to trigger security-relevant memory corruption via malformed data in a terminfo database file that is found in $HOME/.terminfo or reached via the TERMINFO or TERM environment variable.

« first previous Page 2 of 2.