CVE-2020-19189

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions ncurses version 6.1

Description The issue is related to a Buffer Overflow vulnerability in the postprocess terminfo function in tinfo/parse entry.c. This vulnerability allows remote attackers to cause a denial of service via crafted commands.

Recommendations For ncurses version 6.1, this issue was addressed with improved checks, implying an update to a version with these checks is necessary to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

BDU:2024-06965

CVE-2020-19189

DLA-3586-1

USN-6451-1

Affected Products

Astra Linux

Apple Macos

Ubuntu

Ncurses

CVE-2020-19189

Weakness Enumeration

Related Identifiers

Affected Products

References · 38