Debian Bug report logs -
#1034372
ncurses: CVE-2023-29491
Package:
src:ncurses;
Maintainer for src:ncurses is Craig Small <csmall@debianorg>;
Reported by: Moritz Mühlenhoff <jmm@inutilorg>
Date: Thu, 13 Apr 2023 18:42:02 UTC
Severity: important
Tags: security, upstream
Found in version ncurses/64-2
Reply or ...
ncurses before 64 20230408, when used by a setuid application, allows local users to trigger security-relevant memory corruption via malformed data in a terminfo database file that is found in $HOME/terminfo or reached via the TERMINFO or TERM environment variable (CVE-2023-29491) ...
ncurses before 64 20230408, when used by a setuid application, allows local users to trigger security-relevant memory corruption via malformed data in a terminfo database file that is found in $HOME/terminfo or reached via the TERMINFO or TERM environment variable (CVE-2023-29491) ...
DescriptionThe MITRE CVE dictionary describes this issue as: ncurses before 64 20230408, when used by a setuid application, allows local users to trigger security-relevant memory corruption via malformed data in a terminfo database file that is found in $HOME/terminfo or reached via the TERMINFO or TERM environment variable ...
概述
Important: OpenShift Virtualization 4136 security and bug fix update
类型/严重性
Security Advisory: Important
标题
Red Hat OpenShift Virtualization release 4136 is now available with updates to packages and images that fix several bugs and add enhancementsRed Hat Product Security has rated this update as having a security i ...
Synopsis
Important: Cryostat security update
Type/Severity
Security Advisory: Important
Topic
An update is now available for Cryostat 2 on RHEL 8Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available ...
Synopsis
Important: Fence Agents Remediation Operator 021 security update
Type/Severity
Security Advisory: Important
Topic
This is an updated version for the fence-agents-remediation-operator-bundle-container and the fence-agents-remediation-operator-container It is now available for Fence Agents Remediation 02 for RHEL 8Red Hat Product ...
Synopsis
Important: OpenShift Container Platform 41324 security and extras update
Type/Severity
Security Advisory: Important
Topic
Red Hat OpenShift Container Platform release 41324 is now available with updates to packages and images that fix several bugsThis release includes a security update for Red Hat OpenShift Container Platform 4 ...
概述
Important: OpenShift Container Platform 41245 bug fix and security update
类型/严重性
Security Advisory: Important
标题
Red Hat OpenShift Container Platform release 41245 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShi ...
Synopsis
Important: OpenShift Virtualization 4141 security and bug fix update
Type/Severity
Security Advisory: Important
Topic
Red Hat OpenShift Virtualization release 4141 is now available with updates to packages and images that fix several bugs and add enhancementsRed Hat Product Security has rated this update as having a security imp ...
Synopsis
Moderate: ncurses security update
Type/Severity
Security Advisory: Moderate
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for ncurses is now available for Red Hat Enterprise Linux 86 Extended Update SupportRed Hat Product Security has rated ...
Synopsis
Important: Red Hat Ceph Storage 61 security, enhancements, and bug fix update
Type/Severity
Security Advisory: Important
Topic
Updated container image for Red Hat Ceph Storage 61 is now available in the Red Hat Ecosystem Catalog
Description
Red Hat Ceph Storage is a scalable, open, software-defined storage platform that combines ...
Synopsis
Moderate: Multicluster Engine for Kubernetes 232 security updates and bug fixes
Type/Severity
Security Advisory: Moderate
Topic
Multicluster Engine for Kubernetes 232 General Availability release images,which contain security updates and fix bugsRed Hat Product Security has rated this update as having a security impactof Moderat ...
Synopsis
Moderate: ncurses security update
Type/Severity
Security Advisory: Moderate
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for ncurses is now available for Red Hat Enterprise Linux 92 Extended Update SupportRed Hat Product Security has rated ...
Synopsis
Important: Migration Toolkit for Containers (MTC) 180 security and bug fix update
Type/Severity
Security Advisory: Important
Topic
The Migration Toolkit for Containers (MTC) 180 is now availableRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) ba ...
概要
Important: OpenShift Container Platform 41324 bug fix and security update
タイプ/重大度
Security Advisory: Important
トピック
Red Hat OpenShift Container Platform release 41324 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Ha ...
Synopsis
Important: Migration Toolkit for Runtimes security update
Type/Severity
Security Advisory: Important
Topic
Migration Toolkit for Runtimes 121 releaseRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating ...
Synopsis
Important: Migration Toolkit for Applications security update
Type/Severity
Security Advisory: Important
Topic
An update is now available for MTA-61-RHEL-8Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity ...
Synopsis
Important: Release of OpenShift Serverless 1302
Type/Severity
Security Advisory: Important
Topic
Red Hat OpenShift Serverless version 1302 is now availableRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severit ...
Synopsis
Moderate: Red Hat Advanced Cluster Management 282 security and bug fix updates
Type/Severity
Security Advisory: Moderate
Topic
Red Hat Advanced Cluster Management for Kubernetes 282 GeneralAvailability release images, which provide security updates and fix bugsRed Hat Product Security has rated this update as having a security i ...
Synopsis
Important: OpenShift Virtualization 4117 Images security and bug fix update
Type/Severity
Security Advisory: Important
Topic
Red Hat OpenShift Virtualization release 4117 is now available with updates to packages and images that fix several bugs and add enhancementsRed Hat Product Security has rated this update as having a secur ...
Synopsis
Important: Logging Subsystem 577 - Red Hat OpenShift security update
Type/Severity
Security Advisory: Important
Topic
Logging Subsystem 577 - Red Hat OpenShiftRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed sev ...
Synopsis
Important: Logging Subsystem 5612 - Red Hat OpenShift security update
Type/Severity
Security Advisory: Important
Topic
Logging Subsystem 5612 - Red Hat OpenShiftRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed s ...
Synopsis
Important: Red Hat OpenShift Service Mesh for 238 security update
Type/Severity
Security Advisory: Important
Topic
An update is now available for Red Hat OpenShift Service Mesh 23 for RHEL 8Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base sc ...
Synopsis
Important: Red Hat OpenShift Service Mesh for 2211 security update
Type/Severity
Security Advisory: Important
Topic
An update is now available for Red Hat OpenShift Service Mesh 22 for RHEL 8Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base s ...
Synopsis
Moderate: Migration Toolkit for Containers (MTC) 1713 security and bug fix update
Type/Severity
Security Advisory: Moderate
Topic
The Migration Toolkit for Containers (MTC) 1713 is now availableRed Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) bas ...
概述
Important: Red Hat OpenStack Platform 1625 security update
类型/严重性
Security Advisory: Important
标题
An update for osp-director-agent-container, osp-director-downloader-container, osp-director-operator-bundle-container, and osp-director-operator-container is now available for Red Hat OpenStack Platform 1625Red Hat Produ ...
Synopsis
Important: RHACS 41 enhancement and security update
Type/Severity
Security Advisory: Important
Topic
Updated images are now available for Red Hat Advanced Cluster Security (RHACS) The updated image includes new features and bug fixesRed Hat Product Security has rated this update as having a security impact of Important A Common V ...
Synopsis
Important: Self Node Remediation Operator 051 security update
Type/Severity
Security Advisory: Important
Topic
This is an updated version of the Self Node Remediation Operator This Operator is delivered by Red Hat Workload AvailabilityRed Hat Product Security has rated this update as having a security impact of Important A Commo ...
Synopsis
Important: Red Hat OpenShift Service Mesh for 244 security update
Type/Severity
Security Advisory: Important
Topic
An update is now available for Red Hat OpenShift Service Mesh 24 for RHEL 8Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base sc ...
Synopsis
Important: Node Health Check Operator 041
Type/Severity
Security Advisory: Important
Topic
This is an updated version of the Node Health Check Operator This Operator is delivered by Red Hat Workload AvailabilityRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring ...
Synopsis
Important: Node Maintenance Operator 521 security update
Type/Severity
Security Advisory: Important
Topic
This is an updated version of the Node Maintenance Operator This Operator is delivered by Red Hat Workload AvailabilityRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerab ...
Synopsis
Important: Node Maintenance Operator 501 security update
Type/Severity
Security Advisory: Important
Topic
This is an updated version of the Node Maintenance Operator This Operator is delivered by Red Hat Workload AvailabilityRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerab ...
Synopsis
Low: Logging Subsystem 581- Red Hat OpenShift security update
Type/Severity
Security Advisory: Low
Topic
An update is now available for RHOL-58-RHEL-9Red Hat Product Security has rated this update as having a security impact of Low A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, i ...
Synopsis
Important: Release of OpenShift Serverless Logic 1300 SP1 security update
Type/Severity
Security Advisory: Important
Topic
Release of OpenShift Serverless Operator 1301 and OpenShift Serverless Logic 1300 SP1Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring S ...
Synopsis
Moderate: ncurses security and bug fix update
Type/Severity
Security Advisory: Moderate
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory
View affected systems
Topic
An update for ncurses is now available for Red Hat Enterprise Linux 9Red Hat Product Security has rated this update as ...
Synopsis
Important: Red Hat OpenShift Pipelines Operator security update
Type/Severity
Security Advisory: Important
Topic
An update is now available for OpenShift-Pipelines-111-RHEL-8Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which gives a ...
Synopsis
Important: Self Node Remediation Operator 071 security update
Type/Severity
Security Advisory: Important
Topic
This is an updated version of the Self Node Remediation Operator This Operator is delivered by Red Hat Workload AvailabilityRed Hat Product Security has rated this update as having a security impact of Important A Commo ...
概要
Important: OpenShift Container Platform 411 low-latency extras update
タイプ/重大度
Security Advisory: Important
トピック
An update for cnf-tests-container, dpdk-base-container and performance-addon-operator-must-gather-rhel8-container is now available for Red Hat OpenShift Container Platform 411 Secondary scheduler builds ...
Synopsis
Important: cert-manager Operator for Red Hat OpenShift 1115
Type/Severity
Security Advisory: Important
Topic
cert-manager Operator for Red Hat OpenShift 1115Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed sever ...
Synopsis
Important: cert-manager Operator for Red Hat OpenShift 1121
Type/Severity
Security Advisory: Important
Topic
cert-manager Operator for Red Hat OpenShift 1121Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed sever ...
Synopsis
Important: Red Hat OpenShift Pipelines 1106 release and security update
Type/Severity
Security Advisory: Important
Topic
Red Hat OpenShift Pipelines 1106 has been releasedRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) base score, which gives a ...
Synopsis
Important: OpenShift Container Platform 4144 bug fix and security update
Type/Severity
Security Advisory: Important
Topic
Red Hat OpenShift Container Platform release 4144 is now available with updates to packages and images that fix several bugs and add enhancementsThis release includes a security update for Red Hat OpenShift C ...
Synopsis
Important: Node Health Check Operator 061 security update
Type/Severity
Security Advisory: Important
Topic
This is an updated version for the node-healthcheck-must-gather-container, the node-healthcheck-operator-bundle-container, the node-healthcheck-operator-container, and the node-remediation-console-container It is now availabl ...
Synopsis
Important: OpenShift Container Platform 413 low-latency extras security update
Type/Severity
Security Advisory: Important
Topic
An update for cnf-tests-container, dpdk-base-container, performance-addon-operator-must-gather NUMA-aware secondary scheduler and numaresources-operator is now available for Red Hat OpenShift Container Plat ...
Synopsis
Important: Red Hat OpenShift Enterprise security update
Type/Severity
Security Advisory: Important
Topic
Red Hat OpenShift Container Platform low-latency extras release 412, which provides an update for cnf-tests-container, performance-addon-operator-must-gather-rhel8-container, NUMA-aware secondary scheduler and numaresources-opera ...
Synopsis
Important: Secondary Scheduler Operator for Red Hat OpenShift 120
Type/Severity
Security Advisory: Important
Topic
Secondary Scheduler Operator for Red Hat OpenShift 120
Description
The Secondary Scheduler Operator for Red Hat OpenShift is an optionaloperator that makes it possible to deploy a secondary scheduler byproviding a ...