Debian Package Tracker

general

source: ncurses (source, libs)
version: 6.0+20170715-2
maintainer: Craig Small [DMD]
uploaders: Sven Joachim [DMD] [dm]
arch: all any
std-ver: 3.9.8
VCS: Git (Browse)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 5.9-10
oldstable: 5.9+20140913-1
stable: 6.0+20161126-1
testing: 6.0+20170715-2
unstable: 6.0+20170715-2

versioned links

5.9-10: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
5.9+20140913-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
6.0+20161126-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
6.0+20170715-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

lib32ncurses5
lib32ncurses5-dev
lib32ncursesw5
lib32ncursesw5-dev
lib32tinfo-dev
lib32tinfo5
lib64ncurses5
lib64ncurses5-dev
lib64tinfo5
libncurses5
libncurses5-dbg
libncurses5-dev
libncursesw5
libncursesw5-dbg
libncursesw5-dev
libtinfo-dev
libtinfo5
libtinfo5-dbg
libtinfo5-udeb
ncurses-base
ncurses-bin
ncurses-doc
ncurses-examples
ncurses-term

action needed

Standards version of the package is outdated.

high

The package is severely out of date with respect to the Debian Policy. The package should be updated to follow the last version of Debian Policy (Standards-Version 4.0.0 instead of 3.9.8).

Created: 2017-07-08 Last update: 2017-07-17 01:08

3 bugs tagged help in the BTS

normal

The BTS contains 3 bugs tagged help, please consider helping the maintainer in dealing with them.

Created: 2016-05-08 Last update: 2017-07-28 06:03

4 bugs tagged patch in the BTS

normal

The BTS contains patches fixing 4 bugs, consider including or untagging them.

Created: 2017-01-17 Last update: 2017-07-28 06:03

lintian reports 1 warning

normal

Lintian reports 1 warning about this package. You should make the package lintian clean getting rid of them.

Created: 2017-07-09 Last update: 2017-07-09 01:14

4 ignored security issues in wheezy

low

There are 4 open security issues in wheezy.

4 issues skipped by the security teams:

CVE-2017-10685: In ncurses 6.0, there is a format string vulnerability in the fmt_entry function. A crafted input will lead to a remote arbitrary code execution attack.
CVE-2017-10684: In ncurses 6.0, there is a stack-based buffer overflow in the fmt_entry function. A crafted input will lead to a remote arbitrary code execution attack.
CVE-2017-11112: In ncurses 6.0, there is an attempted 0xffffffffffffffff access in the append_acs function of tinfo/parse_entry.c. It could lead to a remote denial of service attack if the terminfo library code is used to process untrusted terminfo data.
CVE-2017-11113: In ncurses 6.0, there is a NULL Pointer Dereference in the _nc_parse_entry function of tinfo/parse_entry.c. It could lead to a remote denial of service attack if the terminfo library code is used to process untrusted terminfo data.

Please fix them.

Created: 2017-07-03 Last update: 2017-07-26 19:22

4 ignored security issues in jessie

low

There are 4 open security issues in jessie.

4 issues skipped by the security teams:

CVE-2017-10685: In ncurses 6.0, there is a format string vulnerability in the fmt_entry function. A crafted input will lead to a remote arbitrary code execution attack.
CVE-2017-10684: In ncurses 6.0, there is a stack-based buffer overflow in the fmt_entry function. A crafted input will lead to a remote arbitrary code execution attack.
CVE-2017-11112: In ncurses 6.0, there is an attempted 0xffffffffffffffff access in the append_acs function of tinfo/parse_entry.c. It could lead to a remote denial of service attack if the terminfo library code is used to process untrusted terminfo data.
CVE-2017-11113: In ncurses 6.0, there is a NULL Pointer Dereference in the _nc_parse_entry function of tinfo/parse_entry.c. It could lead to a remote denial of service attack if the terminfo library code is used to process untrusted terminfo data.

Please fix them.

Created: 2017-07-03 Last update: 2017-07-26 19:22

4 ignored security issues in stretch

low

There are 4 open security issues in stretch.

4 issues skipped by the security teams:

CVE-2017-10685: In ncurses 6.0, there is a format string vulnerability in the fmt_entry function. A crafted input will lead to a remote arbitrary code execution attack.
CVE-2017-10684: In ncurses 6.0, there is a stack-based buffer overflow in the fmt_entry function. A crafted input will lead to a remote arbitrary code execution attack.
CVE-2017-11112: In ncurses 6.0, there is an attempted 0xffffffffffffffff access in the append_acs function of tinfo/parse_entry.c. It could lead to a remote denial of service attack if the terminfo library code is used to process untrusted terminfo data.
CVE-2017-11113: In ncurses 6.0, there is a NULL Pointer Dereference in the _nc_parse_entry function of tinfo/parse_entry.c. It could lead to a remote denial of service attack if the terminfo library code is used to process untrusted terminfo data.

Please fix them.

Created: 2017-07-03 Last update: 2017-07-26 19:22

Build log checks report 1 warning

low

Build log checks report 1 warning

Created: 2014-07-02 Last update: 2014-07-02 18:05

news

[rss feed]

[2017-07-23] ncurses 6.0+20170715-2 MIGRATED to testing (Debian testing watch)
[2017-07-16] Accepted ncurses 6.0+20170715-2 (source) into unstable (Sven Joachim)
[2017-07-16] Accepted ncurses 6.0+20170715-1 (source) into unstable (Sven Joachim)
[2017-07-11] ncurses 6.0+20170708-1 MIGRATED to testing (Debian testing watch)
[2017-07-09] Accepted ncurses 6.0+20170708-1 (source) into unstable (Sven Joachim)
[2017-07-07] Accepted ncurses 6.0+20170701-1 (source) into unstable (Sven Joachim)
[2017-04-14] Accepted ncurses 6.0+20170408-1 (source) into experimental (Sven Joachim)
[2016-12-10] ncurses 6.0+20161126-1 MIGRATED to testing (Debian testing watch)
[2016-11-29] Accepted ncurses 6.0+20161126-1 (source) into unstable (Sven Joachim)
[2016-09-30] ncurses 6.0+20160917-1 MIGRATED to testing (Debian testing watch)
[2016-09-21] Accepted ncurses 6.0+20160917-1 (source) into unstable (Sven Joachim)
[2016-09-14] Accepted ncurses 6.0+20160910-1 (source) into unstable (Sven Joachim)
[2016-07-17] ncurses 6.0+20160625-1 MIGRATED to testing (Debian testing watch)
[2016-07-06] Accepted ncurses 6.0+20160625-1 (source) into unstable (Sven Joachim)
[2016-07-05] ncurses 6.0+20160319-2 MIGRATED to testing (Debian testing watch)
[2016-06-20] Accepted ncurses 6.0+20160319-2 (source amd64 all) into unstable, unstable (Axel Beckert)
[2016-03-31] ncurses 6.0+20160319-1 MIGRATED to testing (Debian testing watch)
[2016-03-25] Accepted ncurses 6.0+20160319-1 (source) into unstable (Sven Joachim)
[2016-02-29] ncurses 6.0+20160213-1 MIGRATED to testing (Debian testing watch)
[2016-02-18] Accepted ncurses 6.0+20160213-1 (source) into unstable (Sven Joachim)
[2015-11-11] ncurses 6.0+20151024-2 MIGRATED to testing (Britney)
[2015-11-05] Accepted ncurses 6.0+20151024-2 (source) into unstable (Sven Joachim)
[2015-11-05] ncurses 6.0+20151024-1 MIGRATED to testing (Britney)
[2015-10-25] Accepted ncurses 6.0+20151024-1 (source) into unstable (Sven Joachim)
[2015-10-23] Accepted ncurses 6.0+20151017-1 (source) into unstable (Sven Joachim)
[2015-08-23] ncurses 6.0+20150810-1 MIGRATED to testing (Britney)
[2015-08-17] Accepted ncurses 6.0+20150810-1 (source all) into unstable (Sven Joachim)
[2015-06-01] ncurses 5.9+20150516-2 MIGRATED to testing (Britney)
[2015-05-21] Accepted ncurses 5.9+20150516-2 (source all) into unstable (Sven Joachim)
[2015-05-20] Accepted ncurses 5.9+20150516-1 (source all) into unstable (Sven Joachim)

bugs [bug history graph]

all: 30 32
RC: 0
I&N: 14
M&W: 16 18
F&P: 0

links

homepage
lintian (0, 1)
buildd: logs, checks, clang, reproducibility
popcon
browse source code
edit tags
security tracker

ubuntu

[Information about Ubuntu for Debian Developers]

version: 6.0+20160625-1ubuntu1
21 bugs (2 patches)
patches for 6.0+20160625-1ubuntu1