NULL Pointer Dereference in _nc_parse_entry function of ncurses 6.0

NULL Pointer Dereference in _nc_parse_entry function of ncurses 6.0

CVE-2017-11113 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

In ncurses 6.0, there is a NULL Pointer Dereference in the _nc_parse_entry function of tinfo/parse_entry.c. It could lead to a remote denial of service attack if the terminfo library code is used to process untrusted terminfo data.

Learn more about our Web Application Penetration Testing UK.