vulnerability

Amazon Linux AMI 2: CVE-2019-17594: Security patch for ncurses (ALAS-2024-2412)

Try Surface Command
Back to search
Severity
5
CVSS
(AV:L/AC:L/Au:N/C:P/I:P/A:P)
Published
Oct 14, 2019
Added
Jan 10, 2024
Modified
Jan 10, 2024

Description

There is a heap-based buffer over-read in the _nc_find_entry function in tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-20191012.

Solution(s)

amazon-linux-ami-2-upgrade-ncursesamazon-linux-ami-2-upgrade-ncurses-baseamazon-linux-ami-2-upgrade-ncurses-c-libsamazon-linux-ami-2-upgrade-ncurses-compat-libsamazon-linux-ami-2-upgrade-ncurses-debuginfoamazon-linux-ami-2-upgrade-ncurses-develamazon-linux-ami-2-upgrade-ncurses-libsamazon-linux-ami-2-upgrade-ncurses-staticamazon-linux-ami-2-upgrade-ncurses-term

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today