Oval Definition:oval:org.opensuse.security:def:78979
Revision Date:2018-01-30Version:1
Title:Security update for ncurses (Moderate)
Description:

This update for ncurses fixes several issues.

These security issues were fixed:

- CVE-2017-13734: Prevent illegal address access in the _nc_safe_strcat function in strings.c that might have lead to a remote denial of service attack (bsc#1056126). - CVE-2017-13733: Prevent illegal address access in the fmt_entry function in progs/dump_entry.c that might have lead to a remote denial of service attack (bsc#1056127). - CVE-2017-13732: Prevent illegal address access in the function dump_uses() in progs/dump_entry.c that might have lead to a remote denial of service attack (bsc#1056128). - CVE-2017-13731: Prevent illegal address access in the function postprocess_termcap() in parse_entry.c that might have lead to a remote denial of service attack (bsc#1056129). - CVE-2017-13730: Prevent illegal address access in the function _nc_read_entry_source() in progs/tic.c that might have lead to a remote denial of service attack (bsc#1056131). - CVE-2017-13729: Prevent illegal address access in the _nc_save_str function in alloc_entry.c that might have lead to a remote denial of service attack (bsc#1056132). - CVE-2017-13728: Prevent infinite loop in the next_char function in comp_scan.c that might have lead to a remote denial of service attack (bsc#1056136).
Family:unixClass:patch
Status:Reference(s):1056126
1056127
1056128
1056129
1056131
1056132
1056136
CVE-2017-13728
CVE-2017-13729
CVE-2017-13730
CVE-2017-13731
CVE-2017-13732
CVE-2017-13733
CVE-2017-13734
SUSE-SU-2018:0284-1
Platform(s):SUSE Linux Enterprise Desktop 12 SP2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • libncurses5-5.9-58.1 is installed
  • OR libncurses5-32bit-5.9-58.1 is installed
  • OR libncurses6-5.9-58.1 is installed
  • OR libncurses6-32bit-5.9-58.1 is installed
  • OR ncurses-devel-5.9-58.1 is installed
  • OR ncurses-utils-5.9-58.1 is installed
  • OR tack-5.9-58.1 is installed
  • OR terminfo-5.9-58.1 is installed
  • OR terminfo-base-5.9-58.1 is installed
  • BACK