You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
ncurses exposes functions from the ncurses library which:
Pass buffers without length to C functions that may write an arbitrary amount of
data, leading to a buffer overflow. (instr, mvwinstr, etc)
Passes rust &str to strings expecting C format arguments, allowing hostile
input to execute a format string attack, which trivially allows writing
arbitrary data to stack memory (functions in the printw family).
ncurses
5.99.0
ncurses
exposes functions from the ncurses library which:data, leading to a buffer overflow. (
instr
,mvwinstr
, etc)input to execute a format string attack, which trivially allows writing
arbitrary data to stack memory (functions in the
printw
family).See advisory page for additional details.
The text was updated successfully, but these errors were encountered: