Home

CVE-2022-29458

Description

ncurses 6.3 before patch 20220416 has an out-of-bounds read and segmentation violation in convert_strings in tinfo/read_entry.c in the terminfo library.

Risk Information

Base Score
7.1
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H
EPSS Score
Exploitation Probability
0.042

Associated Vulnerability

VulnerabilityOS Platform
Multiple vulnerabilities are fixed in Mac OS - Ventura (Software Update) - AutoReboot (13.7.6)Mac
Multiple vulnerabilities are fixed in Mac OS - Ventura (Software Update) - AutoReboot (13.7.5)Mac
Multiple vulnerabilities are fixed in Mac OS - Ventura (Software Update) - AutoReboot (13.7.3)Mac
Multiple vulnerabilities are fixed in Mac OS - Ventura (Software Update) - AutoReboot (13.7.2)Mac
Multiple vulnerabilities are fixed in Mac OS - Ventura 13.7.1 (Software Update) - AutoRebootMac
Multiple vulnerabilities are fixed in Mac OS - Ventura 13.7 (Software Update) - AutoRebootMac
Multiple vulnerabilities are fixed in Mac OS - Ventura (Software Update) - AutoReboot (13.7.4)Mac
Multiple vulnerabilities are fixed in Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)Mac
Multiple vulnerabilities are fixed in Mac OS - Ventura 13.7.8 (Software Update) (Auto Reboot) (CVE-2025-43300)Mac
Multiple vulnerabilities are fixed in Mac OS - Ventura 13.6.8 (Software Update) - AutoReboot (CVE-2024-27877)Mac
Multiple vulnerabilities are fixed in Mac OS - Ventura 13.6.7 (Software Update) - AutoReboot (CVE-2024-27789 , CVE-2023-42861 , CVE-2024-23296)Mac
Multiple vulnerabilities are fixed in Mac OS - Ventura 13.6.5 (Software Update) - AutoRebootMac
Multiple vulnerabilities are fixed in Mac OS - Ventura 13.6.4 (Software Update) - AutoReboot (CVE-2024-23222)Mac
Multiple vulnerabilities are fixed in Mac OS - Ventura 13.6.3 (Software Update) - AutoRebootMac
Multiple vulnerabilities are fixed in Mac OS - Ventura 13.6.1 (Software Update) - AutoRebootMac
Multiple vulnerabilities are fixed in Mac OS - Ventura 13.6 (Software Update) - AutoReboot (CVE-2023-41992,CVE-2023-41991)Mac
Multiple vulnerabilities are fixed in Mac OS - Ventura 13.6.2 (Software Update) - AutoRebootMac
Multiple vulnerabilities are fixed in Mac OS - Ventura 13.6.6 (Software Update) - AutoReboot (CVE-2024-1580)Mac
Multiple vulnerabilities are fixed in Mac OS - Ventura 13.6.9 (Software Update) - AutoRebootMac
Multiple vulnerabilities are fixed in Mac OS - Ventura 13.5 (Software Update) - AutoRebootMac
Multiple vulnerabilities are fixed in Mac OS - Ventura 13.5.1 (Software Update) - AutoRebootMac
Multiple vulnerabilities are fixed in Mac OS - Ventura 13.5.2 (Software Update) - AutoReboot (CVE-2023-41064)Mac
Multiple vulnerabilities are fixed in Mac OS - Ventura 13.4 (Software Update) - AutoReboot(CVE-2023-32409,CVE-2023-28204,CVE-2023-32373)Mac
Multiple vulnerabilities are fixed in Mac OS - Ventura 13.4.1 (Software Update) - AutoReboot(CVE-2023-32434,CVE-2023-32439)Mac
Multiple vulnerabilities are fixed in Mac OS - Ventura 13.3 (Software Update) - AutoRebootMac
Multiple vulnerabilities are fixed in Mac OS - Ventura 13.3.1 (Software Update) - AutoReboot (CVE-2023-28206,CVE-2023-28205)Mac
Multiple vulnerabilities are fixed in Mac OS - Ventura 13.2 (Software Update) - AutoRebootMac
Multiple vulnerabilities are fixed in Mac OS - Ventura 13.2.1 (Software Update) - AutoRebootMac
Multiple vulnerabilities are fixed in Mac OS - Ventura 13.1 (Software Update) - AutoRebootMac
Multiple vulnerabilities are fixed in Mac OS - Ventura 13 - AutoRebootMac
Multiple vulnerabilities are fixed in Mac OS - Ventura 13.0.1 (Software Update) - AutoRebootMac
SUSE-SU-2022:2718-1(SUSE Linux Enterprise Server 12-SP5 ) libncurses5-5.9-78.1.x86_64.rpmLinux
SUSE-SU-2022:2718-1(SUSE Linux Enterprise Server 12-SP5 ) libncurses5-32bit-5.9-78.1.x86_64.rpmLinux
SUSE-SU-2022:2718-1(SUSE Linux Enterprise Server 12-SP5 ) libncurses5-debuginfo-5.9-78.1.x86_64.rpmLinux
SUSE-SU-2022:2718-1(SUSE Linux Enterprise Server 12-SP5 ) libncurses5-debuginfo-32bit-5.9-78.1.x86_64.rpmLinux
SUSE-SU-2022:2718-1(SUSE Linux Enterprise Server 12-SP5 ) libncurses6-5.9-78.1.x86_64.rpmLinux
SUSE-SU-2022:2718-1(SUSE Linux Enterprise Server 12-SP5 ) libncurses6-32bit-5.9-78.1.x86_64.rpmLinux
SUSE-SU-2022:2718-1(SUSE Linux Enterprise Server 12-SP5 ) libncurses6-debuginfo-5.9-78.1.x86_64.rpmLinux
SUSE-SU-2022:2718-1(SUSE Linux Enterprise Server 12-SP5 ) libncurses6-debuginfo-32bit-5.9-78.1.x86_64.rpmLinux
SUSE-SU-2022:2718-1(SUSE Linux Enterprise Server 12-SP5 ) ncurses-debugsource-5.9-78.1.x86_64.rpmLinux
SUSE-SU-2022:2718-1(SUSE Linux Enterprise Server 12-SP5 ) ncurses-devel-5.9-78.1.x86_64.rpmLinux
SUSE-SU-2022:2718-1(SUSE Linux Enterprise Server 12-SP5 ) ncurses-devel-32bit-5.9-78.1.x86_64.rpmLinux
SUSE-SU-2022:2718-1(SUSE Linux Enterprise Server 12-SP5 ) ncurses-devel-debuginfo-5.9-78.1.x86_64.rpmLinux
SUSE-SU-2022:2718-1(SUSE Linux Enterprise Server 12-SP5 ) ncurses-devel-debuginfo-32bit-5.9-78.1.x86_64.rpmLinux
SUSE-SU-2022:2718-1(SUSE Linux Enterprise Server 12-SP5 ) ncurses-utils-5.9-78.1.x86_64.rpmLinux
SUSE-SU-2022:2718-1(SUSE Linux Enterprise Server 12-SP5 ) ncurses-utils-debuginfo-5.9-78.1.x86_64.rpmLinux
SUSE-SU-2022:2718-1(SUSE Linux Enterprise Server 12-SP5 ) tack-5.9-78.1.x86_64.rpmLinux
SUSE-SU-2022:2718-1(SUSE Linux Enterprise Server 12-SP5 ) tack-debuginfo-5.9-78.1.x86_64.rpmLinux
SUSE-SU-2022:2718-1(SUSE Linux Enterprise Server 12-SP5 ) terminfo-5.9-78.1.x86_64.rpmLinux
SUSE-SU-2022:2718-1(SUSE Linux Enterprise Server 12-SP5 ) terminfo-base-5.9-78.1.x86_64.rpmLinux
SUSE-SU-2022:2717-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libncurses6-6.1-150000.5.12.1.x86_64_15_SP3.rpmLinux
SUSE-SU-2022:2717-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) libncurses6-32bit-6.1-150000.5.12.1.x86_64_15_SP3.rpmLinux
SUSE-SU-2022:2717-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) ncurses-devel-6.1-150000.5.12.1.x86_64_15_SP3.rpmLinux
SUSE-SU-2022:2717-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) ncurses-utils-6.1-150000.5.12.1.x86_64_15_SP3.rpmLinux
SUSE-SU-2022:2717-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) tack-6.1-150000.5.12.1.x86_64_15_SP3.rpmLinux
SUSE-SU-2022:2717-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) terminfo-6.1-150000.5.12.1.x86_64_15_SP3.rpmLinux
SUSE-SU-2022:2717-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) terminfo-base-6.1-150000.5.12.1.x86_64_15_SP3.rpmLinux
SUSE-SU-2022:2717-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) terminfo-iterm-6.1-150000.5.12.1.x86_64_15_SP3.rpmLinux
SUSE-SU-2022:2717-1(SUSE Linux Enterprise Module for Basesystem 15-SP3 ) terminfo-screen-6.1-150000.5.12.1.x86_64_15_SP3.rpmLinux
SUSE-SU-2023:4614-1(SUSE Linux Enterprise Server 12 SP5 ) java-1_8_0-ibm-1.8.0_sr8.15-30.117.1.x86_64.rpmLinux
SUSE-SU-2023:4614-1(SUSE Linux Enterprise Server 12 SP5 ) java-1_8_0-ibm-alsa-1.8.0_sr8.15-30.117.1.x86_64.rpmLinux
SUSE-SU-2023:4614-1(SUSE Linux Enterprise Server 12 SP5 ) java-1_8_0-ibm-devel-1.8.0_sr8.15-30.117.1.x86_64.rpmLinux
SUSE-SU-2023:4614-1(SUSE Linux Enterprise Server 12 SP5 ) java-1_8_0-ibm-plugin-1.8.0_sr8.15-30.117.1.x86_64.rpmLinux
SUSE-SU-2023:1860-1(Basesystem Module 15-SP4 ) wayland-devel-1.19.0-150400.3.3.1.x86_64.rpmLinux
SUSE-SU-2023:1860-1(Basesystem Module 15-SP4 ) libwayland-egl1-99~1.19.0-150400.3.3.1.x86_64.rpmLinux
SUSE-SU-2023:1860-1(Basesystem Module 15-SP4 ) libwayland-client0-1.19.0-150400.3.3.1.x86_64.rpmLinux
SUSE-SU-2023:1860-1(Basesystem Module 15-SP4 ) libwayland-cursor0-1.19.0-150400.3.3.1.x86_64.rpmLinux
SUSE-SU-2023:1860-1(Basesystem Module 15-SP4 ) libwayland-server0-1.19.0-150400.3.3.1.x86_64.rpmLinux
SUSE-SU-2023:1860-1(Basesystem Module 15-SP4 ) wayland-debugsource-1.19.0-150400.3.3.1.x86_64.rpmLinux
SUSE-SU-2023:1860-1(Basesystem Module 15-SP4 ) wayland-devel-debuginfo-1.19.0-150400.3.3.1.x86_64.rpmLinux
SUSE-SU-2023:1860-1(Basesystem Module 15-SP4 ) libwayland-client0-32bit-1.19.0-150400.3.3.1.x86_64.rpmLinux
SUSE-SU-2023:1860-1(Basesystem Module 15-SP4 ) libwayland-server0-32bit-1.19.0-150400.3.3.1.x86_64.rpmLinux
SUSE-SU-2023:1860-1(Basesystem Module 15-SP4 ) libwayland-egl1-debuginfo-99~1.19.0-150400.3.3.1.x86_64.rpmLinux
SUSE-SU-2023:1860-1(Basesystem Module 15-SP4 ) libwayland-client0-debuginfo-1.19.0-150400.3.3.1.x86_64.rpmLinux
SUSE-SU-2023:1860-1(Basesystem Module 15-SP4 ) libwayland-cursor0-debuginfo-1.19.0-150400.3.3.1.x86_64.rpmLinux
SUSE-SU-2023:1860-1(Basesystem Module 15-SP4 ) libwayland-server0-debuginfo-1.19.0-150400.3.3.1.x86_64.rpmLinux
SUSE-SU-2023:1860-1(Basesystem Module 15-SP4 ) libwayland-client0-32bit-debuginfo-1.19.0-150400.3.3.1.x86_64.rpmLinux
SUSE-SU-2023:1860-1(Basesystem Module 15-SP4 ) libwayland-server0-32bit-debuginfo-1.19.0-150400.3.3.1.x86_64.rpmLinux
ncurses Security Update (ALAS2023-2023-023) ncurses-6.2-4.20200222.amzn2023.0.3.x86_64.rpmLinux
ncurses Security Update (ALAS2023-2023-023) ncurses-base-6.2-4.20200222.amzn2023.0.3.noarch.rpmLinux
ncurses Security Update (ALAS2023-2023-023) ncurses-c++-libs-6.2-4.20200222.amzn2023.0.3.x86_64.rpmLinux
ncurses Security Update (ALAS2023-2023-023) ncurses-compat-libs-6.2-4.20200222.amzn2023.0.3.x86_64.rpmLinux
ncurses Security Update (ALAS2023-2023-023) ncurses-devel-6.2-4.20200222.amzn2023.0.3.x86_64.rpmLinux
ncurses Security Update (ALAS2023-2023-023) ncurses-libs-6.2-4.20200222.amzn2023.0.3.x86_64.rpmLinux
ncurses Security Update (ALAS2023-2023-023) ncurses-static-6.2-4.20200222.amzn2023.0.3.x86_64.rpmLinux
ncurses Security Update (ALAS2023-2023-023) ncurses-term-6.2-4.20200222.amzn2023.0.3.noarch.rpmLinux
pam update (CESAS-2025-0132) pam-docs-1.5.1-26.el9.x86_64.rpmLinux
pam update (CESAS-2025-0132) pam-devel-1.5.1-26.el9.x86_64.rpmLinux
pam update (CESAS-2025-0132) pam-devel-1.5.1-26.el9.i686.rpmLinux
pam update (CESAS-2025-0138) pam-1.5.1-26.el9.x86_64.rpmLinux
pam update (CESAS-2025-0138) pam-1.5.1-26.el9.i686.rpmLinux
opentelemetry update (CESAS-2025-0134) opentelemetry-collector-0.127.0-1.el9.x86_64.rpmLinux
ncurses update (CESAS-2025-0131) ncurses-term-6.2-12.20210508.el9.noarch.rpmLinux
ncurses update (CESAS-2025-0138) ncurses-libs-6.2-12.20210508.el9.x86_64.rpmLinux
ncurses update (CESAS-2025-0138) ncurses-libs-6.2-12.20210508.el9.i686.rpmLinux
ncurses update (CESAS-2025-0131) ncurses-devel-6.2-12.20210508.el9.x86_64.rpmLinux
ncurses update (CESAS-2025-0131) ncurses-devel-6.2-12.20210508.el9.i686.rpmLinux
ncurses update (CESAS-2025-0131) ncurses-c++-libs-6.2-12.20210508.el9.x86_64.rpmLinux
ncurses update (CESAS-2025-0131) ncurses-c++-libs-6.2-12.20210508.el9.i686.rpmLinux
ncurses update (CESAS-2025-0138) ncurses-base-6.2-12.20210508.el9.noarch.rpmLinux
ncurses update (CESAS-2025-0138) ncurses-6.2-12.20210508.el9.x86_64.rpmLinux
Ncurses-term update (ELSA-2025-12876) ELSA-2025-12876 ncurses-term-6.2-10.20210508.el9_6.2.noarch.rpmLinux
Ncurses-libs update (ELSA-2025-12876) ELSA-2025-12876 ncurses-libs-6.2-10.20210508.el9_6.2.x86_64.rpmLinux
Ncurses-libs update (ELSA-2025-12876) ELSA-2025-12876 ncurses-libs-6.2-10.20210508.el9_6.2.i686.rpmLinux
Ncurses-devel update (ELSA-2025-12876) ELSA-2025-12876 ncurses-devel-6.2-10.20210508.el9_6.2.x86_64.rpmLinux
Ncurses-devel update (ELSA-2025-12876) ELSA-2025-12876 ncurses-devel-6.2-10.20210508.el9_6.2.i686.rpmLinux
Ncurses-c++-libs update (ELSA-2025-12876) ELSA-2025-12876 ncurses-c++-libs-6.2-10.20210508.el9_6.2.x86_64.rpmLinux
Ncurses-c++-libs update (ELSA-2025-12876) ELSA-2025-12876 ncurses-c++-libs-6.2-10.20210508.el9_6.2.i686.rpmLinux
Ncurses-base update (ELSA-2025-12876) ELSA-2025-12876 ncurses-base-6.2-10.20210508.el9_6.2.noarch.rpmLinux
Ncurses update (ELSA-2025-12876) ELSA-2025-12876 ncurses-6.2-10.20210508.el9_6.2.x86_64.rpmLinux
(RHSA-2025:12876)Low: security update RHSA-2025:12876 ncurses-term-6.2-10.20210508.el9_6.2.noarch.rpmLinux
(RHSA-2025:12876)Low: security update RHSA-2025:12876 ncurses-libs-6.2-10.20210508.el9_6.2.x86_64.rpmLinux
(RHSA-2025:12876)Low: security update RHSA-2025:12876 ncurses-libs-6.2-10.20210508.el9_6.2.i686.rpmLinux
(RHSA-2025:12876)Low: security update RHSA-2025:12876 ncurses-devel-6.2-10.20210508.el9_6.2.x86_64.rpmLinux
(RHSA-2025:12876)Low: security update RHSA-2025:12876 ncurses-devel-6.2-10.20210508.el9_6.2.i686.rpmLinux
(RHSA-2025:12876)Low: security update RHSA-2025:12876 ncurses-c++-libs-6.2-10.20210508.el9_6.2.x86_64.rpmLinux
(RHSA-2025:12876)Low: security update RHSA-2025:12876 ncurses-c++-libs-6.2-10.20210508.el9_6.2.i686.rpmLinux
(RHSA-2025:12876)Low: security update RHSA-2025:12876 ncurses-base-6.2-10.20210508.el9_6.2.noarch.rpmLinux
(RHSA-2025:12876)Low: security update RHSA-2025:12876 ncurses-6.2-10.20210508.el9_6.2.x86_64.rpmLinux

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611833Mac OS - Ventura 13.7.8 (Software Update) (Auto Reboot) (CVE-2025-43300)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)
PATCH-611601Mac OS - Ventura 13.7.7 (Software Update) (Auto Reboot)(Deployment-Only)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234