阿里云漏洞库

漏洞描述

ncurses before 6.4 20230408, when used by a setuid application, allows local users to trigger security-relevant memory corruption via malformed data in a terminfo database file that is found in $HOME/.terminfo or reached via the TERMINFO or TERM environment variable.

解决建议

建议您更新当前系统或软件至最新版，完成漏洞的修复。

参考链接
http://ncurses.scripts.mit.edu/?p=ncurses.git%3Ba=commit%3Bh=eb51b1ea1f75a0ec...
http://www.openwall.com/lists/oss-security/2023/04/19/10
http://www.openwall.com/lists/oss-security/2023/04/19/11
https://lists.debian.org/debian-lts-announce/2023/12/msg00004.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedora...
https://security.netapp.com/advisory/ntap-20230517-0009/
https://support.apple.com/kb/HT213843
https://support.apple.com/kb/HT213844
https://support.apple.com/kb/HT213845
https://www.openwall.com/lists/oss-security/2023/04/12/5
https://www.openwall.com/lists/oss-security/2023/04/13/4

受影响软件情况

1
#	类型	厂商	产品	版本	影响面
	运行在以下环境
	应用	gnu	ncurses	*		Up to (excluding) 6.4
	运行在以下环境
	系统	alibaba_cloud_linux_3	ncurses	*		Up to (excluding) 6.1-10.20180224.0.1.al8
	运行在以下环境
	系统	alma_linux_8	ncurses	*		Up to (excluding) 6.1-9.20180224.el8_8.1
	运行在以下环境
	系统	alma_linux_9	ncurses	*		Up to (excluding) 6.2-10.20210508.el9
	运行在以下环境
	系统	alpine_3.15	ncurses	*		Up to (excluding) 6.3_p20211120-r2
	运行在以下环境
	系统	alpine_3.16	ncurses	*		Up to (excluding) 6.3_p20220521-r1
	运行在以下环境
	系统	alpine_3.17	ncurses	*		Up to (excluding) 6.3_p20221119-r1
	运行在以下环境
	系统	alpine_3.19	ncurses	*		Up to (excluding) 6.4_p20230424-r0
	运行在以下环境
	系统	amazon_2	ncurses	*		Up to (excluding) 6.0-8.20170212.amzn2.1.5
	运行在以下环境
	系统	amazon_2023	ncurses	*		Up to (excluding) 6.2-4.20200222.amzn2023.0.4
	运行在以下环境
	系统	amazon_AMI	ncurses	*		Up to (excluding) 5.7-4.20090207.15.amzn1
	运行在以下环境
	系统	anolis_os_8	ncurses	*		Up to (excluding) 6.1-10.20180224.0.1
	运行在以下环境
	系统	debian_10	ncurses	*		Up to (excluding) 6.1+20181013-2+deb10u5
	运行在以下环境
	系统	debian_11	ncurses	*		Up to (excluding) 6.2+20201114-2+deb11u2
	运行在以下环境
	系统	debian_12	ncurses	*		Up to (excluding) 6.4-3
	运行在以下环境
	系统	fedora_38	ncurses	*		Up to (excluding) 6.4-7.20230520.fc38
	运行在以下环境
	系统	kylinos_aarch64_V10	ncurses	*		Up to (excluding) 6.2-4.ky10
	运行在以下环境
	系统	kylinos_aarch64_V10HPC	ncurses	*		Up to (excluding) 6.3-12.p01.ky10h
	运行在以下环境
	系统	kylinos_aarch64_V10SP1	ncurses	*		Up to (excluding) 6.2-4.ky10
	运行在以下环境
	系统	kylinos_aarch64_V10SP2	ncurses	*		Up to (excluding) 6.2-4.ky10
	运行在以下环境
	系统	kylinos_aarch64_V10SP3	ncurses	*		Up to (excluding) 6.2-4.ky10
	运行在以下环境
	系统	kylinos_loongarch64_V10SP1	ncurses	*		Up to (excluding) 6.2-4.p01.a.ky10
	运行在以下环境
	系统	kylinos_loongarch64_V10SP3	ncurses	*		Up to (excluding) 6.2-4.p01.a.ky10
	运行在以下环境
	系统	kylinos_x86_64_V10	ncurses	*		Up to (excluding) 6.2-4.ky10
	运行在以下环境
	系统	kylinos_x86_64_V10HPC	ncurses	*		Up to (excluding) 6.3-12.p01.ky10h
	运行在以下环境
	系统	kylinos_x86_64_V10SP1	ncurses	*		Up to (excluding) 6.2-4.ky10
	运行在以下环境
	系统	kylinos_x86_64_V10SP2	ncurses	*		Up to (excluding) 6.2-4.ky10
	运行在以下环境
	系统	kylinos_x86_64_V10SP3	ncurses	*		Up to (excluding) 6.2-4.ky10
	运行在以下环境
	系统	opensuse_5.3	terminfo	*		Up to (excluding) 6.1-150000.5.15.1
	运行在以下环境
	系统	opensuse_Leap_15.4	tack	*		Up to (excluding) 6.1-150000.5.15.1
	运行在以下环境
	系统	oracle_8	ncurses	*		Up to (excluding) 6.1-9.20180224.el8_8.1
	运行在以下环境
系统	oracle_9	ncurses	*		Up to (excluding) 6.2-10.20210508.el9
运行在以下环境
系统	redhat_8	ncurses	*		Up to (excluding) 6.1-9.20180224.el8_8.1
运行在以下环境
系统	redhat_9	ncurses	*		Up to (excluding) 6.2-10.20210508.el9
运行在以下环境
系统	suse_12_SP5	tack	*		Up to (excluding) 5.9-81.1
运行在以下环境
系统	ubuntu_18.04	ncurses	*		Up to (excluding) 6.1-1ubuntu1.18.04.1
运行在以下环境
系统	ubuntu_20.04	ncurses	*		Up to (excluding) 6.2-0ubuntu2.1
运行在以下环境
系统	ubuntu_22.04	ncurses	*		Up to (excluding) 6.3-2ubuntu0.1
运行在以下环境
系统	ubuntu_22.10	ncurses	*		Up to (excluding) 6.3+20220423-2ubuntu0.1

攻击路径

本地
攻击复杂度

复杂
权限要求

普通权限
影响范围

越权影响
EXP成熟度

未验证
补丁情况

官方补丁
数据保密性

数据泄露
数据完整性

无影响
服务器危害

无影响
全网数量

N/A

CWE-ID	漏洞类型
CWE-787	跨界内存写

中危 Ncurses 拒绝服务漏洞(CVE-2023-29491)

漏洞描述

解决建议

参考链接

受影响软件情况