{"id":"CVE-2023-29491","details":"ncurses before 6.4 20230408, when used by a setuid application, allows local users to trigger security-relevant memory corruption via malformed data in a terminfo database file that is found in $HOME/.terminfo or reached via the TERMINFO or TERM environment variable.","modified":"2026-04-02T08:54:04.632841Z","published":"2023-04-14T01:15:08.570Z","related":["ALSA-2023:5249","ALSA-2023:6698","MGASA-2024-0065","SUSE-SU-2023:2111-1","SUSE-SU-2023:2112-1"],"references":[{"type":"WEB","url":"http://ncurses.scripts.mit.edu/?p=ncurses.git%3Ba=commit%3Bh=eb51b1ea1f75a0ec17c9c5937cb28df1e8eeec56"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2023/12/msg00004.html"},{"type":"WEB","url":"https://support.apple.com/kb/HT213843"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LU4MYMKFEZQ5VSCVLRIZGDQOUW3T44GT/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LU4MYMKFEZQ5VSCVLRIZGDQOUW3T44GT/"},{"type":"WEB","url":"https://support.apple.com/kb/HT213844"},{"type":"WEB","url":"https://support.apple.com/kb/HT213845"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20230517-0009/"},{"type":"FIX","url":"https://www.openwall.com/lists/oss-security/2023/04/13/4"},{"type":"FIX","url":"http://www.openwall.com/lists/oss-security/2023/04/19/10"},{"type":"ARTICLE","url":"https://www.openwall.com/lists/oss-security/2023/04/12/5"},{"type":"EVIDENCE","url":"http://www.openwall.com/lists/oss-security/2023/04/19/11"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/mirror/ncurses","events":[{"introduced":"0"},{"fixed":"79b9071f2be20a24c7be031655a5638f6032f29f"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"6.4"}]}}],"versions":["v4.1","v4.2","v5.0","v5.1","v5.2","v5.3","v5.4","v5.5","v5.6","v5.7","v5.8","v5.9","v6.0","v6.1","v6.2","v6.3"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-29491.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}