Wind River Support Network

HomeDefectsLIN10-1866
Fixed

LIN10-1866 : no fix for Security Advisory - ncurses - CVE-2017-13733

Created: Sep 14, 2017    Updated: Dec 3, 2018
Resolved Date: Mar 1, 2018
Found In Version: 10.17.41.1
Fix Version: 10.17.41.5
Severity: Standard
Applicable for: Wind River Linux LTS 17
Component/s: Userspace

Description

Description:
There is an illegal address access in the fmt_entry function in
progs/dump_entry.c in ncurses 6.0 that might lead to a remote
denial of service attack.

Solution:
No specific fix for CVE-2017-13733

Redat could not be reproduced.
https://bugzilla.redhat.com/show_bug.cgi?id=1484290
https://bugzilla.redhat.com/show_bug.cgi?id=1488920

Debian mark it as fixed, but no specific patch provided
https://security-tracker.debian.org/tracker/CVE-2017-13733

Other Downloads


Live chat
Online