CVE-2023-29491

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2023-29491
ncurses before 6.4 20230408, when used by a setuid application, allows local users to trigger security-relevant memory corruption via malformed data in a terminfo database file that is found in $HOME/.terminfo or reached via the TERMINFO or TERM environment variable.

7.8 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
http://ncurses.scripts.mit.edu/?p=ncurses.git%3Ba=commit%3Bh=eb51b1ea1f75a0ec17c9c5937cb28df1e8eeec56
http://www.openwall.com/lists/oss-security/2023/04/19/10 Mailing List Patch Third Party Advisory
http://www.openwall.com/lists/oss-security/2023/04/19/11 Exploit Mailing List Third Party Advisory
https://lists.debian.org/debian-lts-announce/2023/12/msg00004.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LU4MYMKFEZQ5VSCVLRIZGDQOUW3T44GT/
https://security.netapp.com/advisory/ntap-20230517-0009/
https://support.apple.com/kb/HT213843
https://support.apple.com/kb/HT213844
https://support.apple.com/kb/HT213845
https://www.openwall.com/lists/oss-security/2023/04/12/5 Mailing List
https://www.openwall.com/lists/oss-security/2023/04/13/4 Mailing List Patch
Configurations

Configuration 1 (hide)

cpe:2.3:a:gnu:ncurses:*:*:*:*:*:*:*:*
History

31 Jan 2024, 03:15

Type Values Removed Values Added
References
  • () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LU4MYMKFEZQ5VSCVLRIZGDQOUW3T44GT/ -

03 Dec 2023, 20:15

Type Values Removed Values Added
References
  • {'url': 'http://ncurses.scripts.mit.edu/?p=ncurses.git;a=commit;h=eb51b1ea1f75a0ec17c9c5937cb28df1e8eeec56', 'name': 'http://ncurses.scripts.mit.edu/?p=ncurses.git;a=commit;h=eb51b1ea1f75a0ec17c9c5937cb28df1e8eeec56', 'tags': ['Mailing List', 'Patch'], 'refsource': 'MISC'}
  • () http://ncurses.scripts.mit.edu/?p=ncurses.git%3Ba=commit%3Bh=eb51b1ea1f75a0ec17c9c5937cb28df1e8eeec56 -
  • (CONFIRM) https://support.apple.com/kb/HT213845 -
  • (CONFIRM) https://support.apple.com/kb/HT213844 -
  • (CONFIRM) https://support.apple.com/kb/HT213843 -
  • () https://lists.debian.org/debian-lts-announce/2023/12/msg00004.html -

17 May 2023, 20:15

Type Values Removed Values Added
References
  • (CONFIRM) https://security.netapp.com/advisory/ntap-20230517-0009/ -

24 Apr 2023, 13:23

Type Values Removed Values Added
CWE CWE-787
CPE cpe:2.3:a:gnu:ncurses:*:*:*:*:*:*:*:*
References (MISC) http://ncurses.scripts.mit.edu/?p=ncurses.git;a=commit;h=eb51b1ea1f75a0ec17c9c5937cb28df1e8eeec56 - (MISC) http://ncurses.scripts.mit.edu/?p=ncurses.git;a=commit;h=eb51b1ea1f75a0ec17c9c5937cb28df1e8eeec56 - Mailing List, Patch
References (MLIST) http://www.openwall.com/lists/oss-security/2023/04/19/10 - (MLIST) http://www.openwall.com/lists/oss-security/2023/04/19/10 - Mailing List, Patch, Third Party Advisory
References (MISC) https://www.openwall.com/lists/oss-security/2023/04/13/4 - (MISC) https://www.openwall.com/lists/oss-security/2023/04/13/4 - Mailing List, Patch
References (MLIST) http://www.openwall.com/lists/oss-security/2023/04/19/11 - (MLIST) http://www.openwall.com/lists/oss-security/2023/04/19/11 - Exploit, Mailing List, Third Party Advisory
References (MISC) https://www.openwall.com/lists/oss-security/2023/04/12/5 - (MISC) https://www.openwall.com/lists/oss-security/2023/04/12/5 - Mailing List
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 7.8

19 Apr 2023, 21:15

Type Values Removed Values Added
New CVE
Information

Published : 2023-04-14 01:15

Updated : 2024-02-04 23:37

NVD link : CVE-2023-29491

Mitre link : CVE-2023-29491

CVE.ORG link : CVE-2023-29491

JSON object : View

Products Affected

gnu

  • ncurses
CWE
CWE-787

Out-of-bounds Write