CVE-2019-17595

Priority
Description
There is a heap-based buffer over-read in the fmt_entry function in
tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-20191012.
Notes
Package
Upstream:released (6.1+20191019-1)
Ubuntu 12.04 ESM (Precise Pangolin):needed
Ubuntu 14.04 ESM (Trusty Tahr):needed
Ubuntu 16.04 LTS (Xenial Xerus):needed
Ubuntu 18.04 LTS (Bionic Beaver):needed
Ubuntu 19.04 (Disco Dingo):ignored (reached end-of-life)
Ubuntu 19.10 (Eoan Ermine):needed
Ubuntu 20.04 (Focal Fossa):released (6.1+20191019-1ubuntu1)
More Information

Updated: 2020-01-23 20:49:13 UTC (commit b4629892d998f2ede31f59bb7508dc50a92ac664)