NULL Pointer Dereference Affecting ncurses package, versions *
Snyk CVSS
Threat Intelligence
EPSS
0.24% (64th
percentile)
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk ID SNYK-DEBIAN8-NCURSES-367841
- published 5 May 2018
- disclosed 5 May 2018
Introduced: 5 May 2018
CVE-2018-10754 Open this link in a new tabHow to fix?
There is no fixed version for Debian:8 ncurses.
NVD Description
Note: Versions mentioned in the description apply only to the upstream ncurses package and not the ncurses package as distributed by Debian.
See How to fix? for Debian:8 relevant fixed versions and status.
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none
References
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10754
- https://security-tracker.debian.org/tracker/CVE-2018-10754
- https://drive.google.com/drive/u/2/folders/1klyBjovfKXhLqBhbWX1n9dwqD-qne5f2
- https://invisible-island.net/ncurses/NEWS.html#t20180414
- https://bugzilla.redhat.com/show_bug.cgi?id=1566575