REDHAT-BUG-2191704

First published: Fri Apr 28 2023(Updated: )

ncurses before 6.4 20230408, when used by a setuid application, allows local users to trigger security-relevant memory corruption via malformed data in a terminfo database file that is found in $HOME/.terminfo or reached via the TERMINFO or TERM environment variable. <a href="https://www.openwall.com/lists/oss-security/2023/04/13/4">https://www.openwall.com/lists/oss-security/2023/04/13/4</a> <a href="https://www.openwall.com/lists/oss-security/2023/04/12/5">https://www.openwall.com/lists/oss-security/2023/04/12/5</a> <a href="http://ncurses.scripts.mit.edu/?p=ncurses.git;a=commit;h=eb51b1ea1f75a0ec17c9c5937cb28df1e8eeec56">http://ncurses.scripts.mit.edu/?p=ncurses.git;a=commit;h=eb51b1ea1f75a0ec17c9c5937cb28df1e8eeec56</a> <a href="http://www.openwall.com/lists/oss-security/2023/04/19/10">http://www.openwall.com/lists/oss-security/2023/04/19/10</a> <a href="http://www.openwall.com/lists/oss-security/2023/04/19/11">http://www.openwall.com/lists/oss-security/2023/04/19/11</a>

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• agent/references
• agent/severity
• agent/description
• agent/type
• agent/first-publish-date
• agent/event
• collector/redhat-bugzilla
• source/Red Hat
• alias/CVE-2023-29491
• agent/last-modified-date
• agent/source
• agent/tags
• agent/softwarecombine
• agent/guess-ai
• agent/software-canonical-lookup
• agent/software-canonical-lookup-request
• vendor/gnu
• canonical/ncurses