UbuntuUpdates.org

Package "ncurses"

Name: ncurses

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • developer's libraries for ncurses (32-bit)
  • shared libraries for terminal handling (32-bit)
  • shared libraries for terminal handling (wide character support) (32-bit)
  • shared low-level terminfo library for terminal handling (32-bit)

Latest version: 6.4+20240113-1ubuntu2.1
Release: noble (24.04)
Level: security
Repository: main

Links



Other versions of "ncurses" in Noble

Repository Area Version
base main 6.4+20240113-1ubuntu2

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 6.4+20240113-1ubuntu2.1 2026-07-02 17:07:32 UTC

  ncurses (6.4+20240113-1ubuntu2.1) noble-security; urgency=medium

  * SECURITY UPDATE: stack-based buffer overflow in infocmp
    - debian/patches/CVE-2025-69720.patch: clamp length to
      MAX_TERMINFO_LENGTH before copying into buf2 in analyze_string.
    - CVE-2025-69720

 -- Paulo Flabiano Smorigo <email address hidden> Tue, 30 Jun 2026 21:25:29 +0000

CVE-2025-69720 The infocmp command-line tool in ncurses before 6.5-20251213 has a stack-based buffer overflow in analyze_string in progs/infocmp.c.



About   -   Send Feedback to @ubuntu_updates