Oval Definition:oval:org.opensuse.security:def:81200
Revision Date:2017-07-07Version:1
Title:Recommended update for ncurses (Important)
Description:

This update for ncurses fixes the following issues:

Security issues fixed: - CVE-2017-10684: Possible RCE via stack-based buffer overflow in the fmt_entry function. (bsc#1046858) - CVE-2017-10685: Possible RCE with format string vulnerability in the fmt_entry function. (bsc#1046853)

Bugfixes: - Drop patch ncurses-5.9-environment.dif as YaST2 ncurses GUI does not need it anymore and as well as it causes bug bsc#1000662
Family:unixClass:patch
Status:Reference(s):1000662
1046853
1046858
CVE-2017-10684
CVE-2017-10685
SUSE-SU-2017:1815-1
Platform(s):SUSE Linux Enterprise Server 12 SP2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libncurses5-5.9-44.1 is installed
  • OR libncurses5-32bit-5.9-44.1 is installed
  • OR libncurses6-5.9-44.1 is installed
  • OR libncurses6-32bit-5.9-44.1 is installed
  • OR ncurses-devel-5.9-44.1 is installed
  • OR ncurses-devel-32bit-5.9-44.1 is installed
  • OR ncurses-utils-5.9-44.1 is installed
  • OR tack-5.9-44.1 is installed
  • OR terminfo-5.9-44.1 is installed
  • OR terminfo-base-5.9-44.1 is installed
    • BACK