USN-6451-1: ncurses vulnerability
Published Oct 24, 2023
·Updated
It was discovered that ncurses could be made to read out of bounds. An attacker could possibly use this issue to cause a denial of service.
Affected Software
72 affected componentsFixes available
All of the following
ubuntu/lib32ncurses5<6.1-1ubuntu1.18.04.1+esm1
6.1-1ubuntu1.18.04.1+esm1
Ubuntu Ubuntu=18.04
All of the following
ubuntu/lib32ncursesw5<6.1-1ubuntu1.18.04.1+esm1
6.1-1ubuntu1.18.04.1+esm1
Ubuntu Ubuntu=18.04
All of the following
ubuntu/lib32tinfo5<6.1-1ubuntu1.18.04.1+esm1
6.1-1ubuntu1.18.04.1+esm1
Ubuntu Ubuntu=18.04
All of the following
ubuntu/lib64ncurses5<6.1-1ubuntu1.18.04.1+esm1
6.1-1ubuntu1.18.04.1+esm1
Ubuntu Ubuntu=18.04
All of the following
ubuntu/lib64tinfo5<6.1-1ubuntu1.18.04.1+esm1
6.1-1ubuntu1.18.04.1+esm1
Ubuntu Ubuntu=18.04
All of the following
ubuntu/libncurses5<6.1-1ubuntu1.18.04.1+esm1
6.1-1ubuntu1.18.04.1+esm1
Ubuntu Ubuntu=18.04
All of the following
ubuntu/libncursesw5<6.1-1ubuntu1.18.04.1+esm1
6.1-1ubuntu1.18.04.1+esm1
Ubuntu Ubuntu=18.04
All of the following
ubuntu/libtinfo5<6.1-1ubuntu1.18.04.1+esm1
6.1-1ubuntu1.18.04.1+esm1
Ubuntu Ubuntu=18.04
All of the following
ubuntu/libx32ncurses5<6.1-1ubuntu1.18.04.1+esm1
6.1-1ubuntu1.18.04.1+esm1
Ubuntu Ubuntu=18.04
All of the following
ubuntu/libx32ncursesw5<6.1-1ubuntu1.18.04.1+esm1
6.1-1ubuntu1.18.04.1+esm1
Ubuntu Ubuntu=18.04
All of the following
ubuntu/libx32tinfo5<6.1-1ubuntu1.18.04.1+esm1
6.1-1ubuntu1.18.04.1+esm1
Ubuntu Ubuntu=18.04
All of the following
ubuntu/ncurses-bin<6.1-1ubuntu1.18.04.1+esm1
6.1-1ubuntu1.18.04.1+esm1
Ubuntu Ubuntu=18.04
All of the following
ubuntu/lib32ncurses5<6.0+20160213-1ubuntu1+esm4
6.0+20160213-1ubuntu1+esm4
Ubuntu Ubuntu=16.04
All of the following
ubuntu/lib32ncursesw5<6.0+20160213-1ubuntu1+esm4
6.0+20160213-1ubuntu1+esm4
Ubuntu Ubuntu=16.04
All of the following
ubuntu/lib32tinfo5<6.0+20160213-1ubuntu1+esm4
6.0+20160213-1ubuntu1+esm4
Ubuntu Ubuntu=16.04
All of the following
ubuntu/lib64ncurses5<6.0+20160213-1ubuntu1+esm4
6.0+20160213-1ubuntu1+esm4
Ubuntu Ubuntu=16.04
All of the following
ubuntu/lib64tinfo5<6.0+20160213-1ubuntu1+esm4
6.0+20160213-1ubuntu1+esm4
Ubuntu Ubuntu=16.04
All of the following
ubuntu/libncurses5<6.0+20160213-1ubuntu1+esm4
6.0+20160213-1ubuntu1+esm4
Ubuntu Ubuntu=16.04
All of the following
ubuntu/libncursesw5<6.0+20160213-1ubuntu1+esm4
6.0+20160213-1ubuntu1+esm4
Ubuntu Ubuntu=16.04
All of the following
ubuntu/libtinfo5<6.0+20160213-1ubuntu1+esm4
6.0+20160213-1ubuntu1+esm4
Ubuntu Ubuntu=16.04
All of the following
ubuntu/libx32ncurses5<6.0+20160213-1ubuntu1+esm4
6.0+20160213-1ubuntu1+esm4
Ubuntu Ubuntu=16.04
All of the following
ubuntu/libx32ncursesw5<6.0+20160213-1ubuntu1+esm4
6.0+20160213-1ubuntu1+esm4
Ubuntu Ubuntu=16.04
All of the following
ubuntu/libx32tinfo5<6.0+20160213-1ubuntu1+esm4
6.0+20160213-1ubuntu1+esm4
Ubuntu Ubuntu=16.04
All of the following
ubuntu/ncurses-bin<6.0+20160213-1ubuntu1+esm4
6.0+20160213-1ubuntu1+esm4
Ubuntu Ubuntu=16.04
All of the following
ubuntu/lib32ncurses5<5.9+20140118-1ubuntu1+esm4
5.9+20140118-1ubuntu1+esm4
Ubuntu Ubuntu=14.04
All of the following
ubuntu/lib32ncursesw5<5.9+20140118-1ubuntu1+esm4
5.9+20140118-1ubuntu1+esm4
Ubuntu Ubuntu=14.04
All of the following
ubuntu/lib32tinfo5<5.9+20140118-1ubuntu1+esm4
5.9+20140118-1ubuntu1+esm4
Ubuntu Ubuntu=14.04
All of the following
ubuntu/lib64ncurses5<5.9+20140118-1ubuntu1+esm4
5.9+20140118-1ubuntu1+esm4
Ubuntu Ubuntu=14.04
All of the following
ubuntu/lib64tinfo5<5.9+20140118-1ubuntu1+esm4
5.9+20140118-1ubuntu1+esm4
Ubuntu Ubuntu=14.04
All of the following
ubuntu/libncurses5<5.9+20140118-1ubuntu1+esm4
5.9+20140118-1ubuntu1+esm4
Ubuntu Ubuntu=14.04
All of the following
ubuntu/libncursesw5<5.9+20140118-1ubuntu1+esm4
5.9+20140118-1ubuntu1+esm4
Ubuntu Ubuntu=14.04
All of the following
ubuntu/libtinfo5<5.9+20140118-1ubuntu1+esm4
5.9+20140118-1ubuntu1+esm4
Ubuntu Ubuntu=14.04
All of the following
ubuntu/libx32ncurses5<5.9+20140118-1ubuntu1+esm4
5.9+20140118-1ubuntu1+esm4
Ubuntu Ubuntu=14.04
All of the following
ubuntu/libx32ncursesw5<5.9+20140118-1ubuntu1+esm4
5.9+20140118-1ubuntu1+esm4
Ubuntu Ubuntu=14.04
All of the following
ubuntu/libx32tinfo5<5.9+20140118-1ubuntu1+esm4
5.9+20140118-1ubuntu1+esm4
Ubuntu Ubuntu=14.04
All of the following
ubuntu/ncurses-bin<5.9+20140118-1ubuntu1+esm4
5.9+20140118-1ubuntu1+esm4
Ubuntu Ubuntu=14.04
Event History
Oct 24, 2023
Advisory Published
via Ubuntu·12:00 AM
Frequently Asked Questions
1
What is the vulnerability ID USN-6451-1 about?
The vulnerability ID USN-6451-1 relates to ncurses in Ubuntu, where it can read out of bounds, potentially leading to a denial of service.
2
What is the severity of USN-6451-1?
The severity of USN-6451-1 is assessed as high due to the potential impact on system stability and availability.
3
How do I fix USN-6451-1?
To fix USN-6451-1, update the affected packages to the recommended version 6.1-1ubuntu1.18.04.1+esm1 or higher.
4
Which Ubuntu versions are affected by USN-6451-1?
USN-6451-1 affects Ubuntu 18.04 and earlier versions that include the vulnerable ncurses packages.
5
Can USN-6451-1 be exploited remotely?
Yes, USN-6451-1 could potentially be exploited remotely, enabling attackers to cause a denial of service.