Register | Log in

ncurses

Choose email to subscribe with

general

source: ncurses (main)
version: 6.1+20190803-1
maintainer: Craig Small (DMD)
uploaders: Sven Joachim [DMD] [DM]
arch: all any
std-ver: 4.4.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 5.9+20140913-1+deb8u3
oldstable: 6.0+20161126-1+deb9u2
stable: 6.1+20181013-2+deb10u1
testing: 6.1+20190803-1
unstable: 6.1+20190803-1

versioned links

5.9+20140913-1+deb8u3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
6.0+20161126-1+deb9u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
6.1+20181013-2+deb10u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
6.1+20190803-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

lib32ncurses-dev
lib32ncurses6
lib32ncursesw6
lib32tinfo6
lib64ncurses-dev
lib64ncurses6
lib64ncursesw6
lib64tinfo6
libncurses-dev (1 bugs: 0, 0, 1, 0)
libncurses5 (1 bugs: 0, 1, 0, 0)
libncurses5-dev (3 bugs: 0, 3, 0, 0)
libncurses6
libncursesw5
libncursesw5-dev (1 bugs: 0, 1, 0, 0)
libncursesw6
libtinfo-dev
libtinfo5
libtinfo6
libtinfo6-udeb
ncurses-base (7 bugs: 0, 1, 6, 0)
ncurses-bin (2 bugs: 0, 2, 0, 0)
ncurses-doc (1 bugs: 0, 1, 0, 0)
ncurses-examples
ncurses-term (3 bugs: 0, 1, 2, 0)

action needed

2 security issues in bullseye high

There are 2 open security issues in bullseye.

2 important issues:

CVE-2019-17594: There is a heap-based buffer over-read in the _nc_find_entry function in tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-20191012.
CVE-2019-17595: There is a heap-based buffer over-read in the fmt_entry function in tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-20191012.

Please fix them.

Created: 2019-10-15 Last update: 2019-10-17 21:52

2 security issues in sid high

There are 2 open security issues in sid.

2 important issues:

CVE-2019-17594: There is a heap-based buffer over-read in the _nc_find_entry function in tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-20191012.
CVE-2019-17595: There is a heap-based buffer over-read in the fmt_entry function in tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-20191012.

Please fix them.

Created: 2019-10-15 Last update: 2019-10-17 21:52

1 bug tagged patch in the BTS normal

The BTS contains patches fixing 1 bug, consider including or untagging them.

Created: 2019-04-01 Last update: 2019-10-18 08:06

2 ignored security issues in buster low

There are 2 open security issues in buster.

2 issues skipped by the security teams:

CVE-2019-17594: There is a heap-based buffer over-read in the _nc_find_entry function in tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-20191012.
CVE-2019-17595: There is a heap-based buffer over-read in the fmt_entry function in tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-20191012.

Please fix them.

Created: 2019-10-15 Last update: 2019-10-17 21:52

3 ignored security issues in jessie low

There are 3 open security issues in jessie.

3 issues skipped by the security teams:

CVE-2018-19211: In ncurses 6.1, there is a NULL pointer dereference at function _nc_parse_entry in parse_entry.c that will lead to a denial of service attack. The product proceeds to the dereference code path even after a "dubious character `*' in name or alias field" detection.
CVE-2019-17594: There is a heap-based buffer over-read in the _nc_find_entry function in tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-20191012.
CVE-2019-17595: There is a heap-based buffer over-read in the fmt_entry function in tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-20191012.

Please fix them.

Created: 2017-07-03 Last update: 2019-10-17 21:52

3 ignored security issues in stretch low

There are 3 open security issues in stretch.

3 issues skipped by the security teams:

CVE-2018-19211: In ncurses 6.1, there is a NULL pointer dereference at function _nc_parse_entry in parse_entry.c that will lead to a denial of service attack. The product proceeds to the dereference code path even after a "dubious character `*' in name or alias field" detection.
CVE-2019-17594: There is a heap-based buffer over-read in the _nc_find_entry function in tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-20191012.
CVE-2019-17595: There is a heap-based buffer over-read in the fmt_entry function in tinfo/comp_hash.c in the terminfo library in ncurses before 6.1-20191012.

Please fix them.

Created: 2018-05-05 Last update: 2019-10-17 21:52

Build log checks report 1 warning low

Build log checks report 1 warning

Created: 2017-10-26 Last update: 2017-10-26 07:22

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.4.1 instead of 4.4.0).

Created: 2019-09-29 Last update: 2019-09-29 23:40

news

[2019-08-21] Accepted ncurses 6.1+20181013-2+deb10u1 (source) into proposed-updates->stable-new, proposed-updates (Sven Joachim)
[2019-08-14] ncurses 6.1+20190803-1 MIGRATED to testing (Debian testing watch)
[2019-08-08] Accepted ncurses 6.1+20190803-1 (source) into unstable (Sven Joachim)
[2019-08-07] ncurses 6.1+20190713-2 MIGRATED to testing (Debian testing watch)
[2019-08-01] Accepted ncurses 6.1+20190713-2 (source) into unstable (Sven Joachim)
[2019-07-30] ncurses 6.1+20190713-1 MIGRATED to testing (Debian testing watch)
[2019-07-19] Accepted ncurses 6.1+20190713-1 (source) into unstable (Sven Joachim)
[2019-02-22] ncurses 6.1+20181013-2 MIGRATED to testing (Debian testing watch)
[2019-02-11] Accepted ncurses 6.1+20181013-2 (source all) into unstable (Sven Joachim)
[2018-10-24] ncurses 6.1+20181013-1 MIGRATED to testing (Debian testing watch)
[2018-10-18] Accepted ncurses 6.1+20181013-1 (source all) into unstable (Sven Joachim)
[2018-07-23] ncurses 6.1+20180714-1 MIGRATED to testing (Debian testing watch)
[2018-07-17] Accepted ncurses 6.1+20180714-1 (source) into unstable (Sven Joachim)
[2018-06-12] Accepted ncurses 5.9+20140913-1+deb8u3 (source all) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Sven Joachim)
[2018-05-27] ncurses 6.1+20180210-4 MIGRATED to testing (Debian testing watch)
[2018-05-22] Accepted ncurses 6.1+20180210-4 (source all) into unstable (Sven Joachim)
[2018-05-16] ncurses 6.1+20180210-3 MIGRATED to testing (Debian testing watch)
[2018-05-10] Accepted ncurses 6.1+20180210-3 (source) into unstable (Sven Joachim)
[2018-05-05] ncurses 6.1+20180210-2 MIGRATED to testing (Debian testing watch)
[2018-04-26] Accepted ncurses 6.1+20180210-2 (source) into unstable (Sven Joachim)
[2018-02-26] Accepted ncurses 6.1+20180210-1 (source amd64 all) into experimental, experimental (Sven Joachim) (signed by: Craig Small)
[2018-02-22] ncurses 6.1-1 MIGRATED to testing (Debian testing watch)
[2018-02-14] Accepted ncurses 6.0+20161126-1+deb9u2 (source) into proposed-updates->stable-new, proposed-updates (Sven Joachim)
[2018-02-11] Accepted ncurses 6.1-1 (source) into unstable (Sven Joachim)
[2017-12-08] ncurses 6.0+20171125-1 MIGRATED to testing (Debian testing watch)
[2017-12-03] Accepted ncurses 5.9+20140913-1+deb8u2 (source all) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Sven Joachim)
[2017-12-02] Accepted ncurses 5.9+20140913-1+deb8u1 (source all) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Sven Joachim)
[2017-11-27] Accepted ncurses 6.0+20171125-1 (source) into unstable (Sven Joachim)
[2017-09-28] Accepted ncurses 6.0+20161126-1+deb9u1 (source) into proposed-updates->stable-new, proposed-updates (Sven Joachim)
[2017-09-09] ncurses 6.0+20170902-1 MIGRATED to testing (Debian testing watch)

1
2

bugs [bug history graph]

all: 32
RC: 0
I&N: 15
M&W: 17
F&P: 0
patch: 1

links

homepage
lintian
buildd: logs, checks, clang, reproducibility, cross
popcon
browse source code
edit tags
security tracker

Debian Package Tracker — Copyright 2013-2018 The Distro Tracker Developers

Report problems to the tracker.debian.org pseudo-package in the Debian BTS.

Documentation — Bugs — Git Repository — Contributing