CVE-2023-29491

7.8 HIGH

Published: April 14, 2023 Modified: November 04, 2025

Description

ncurses before 6.4 20230408, when used by a setuid application, allows local users to trigger security-relevant memory corruption via malformed data in a terminfo database file that is found in $HOME/.terminfo or reached via the TERMINFO or TERM environment variable.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

CVSS v3.x Details

0.0 Low Medium High Critical 10.0

Vector String

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://ncurses.scripts.mit.edu/?p=ncurses.git%3Ba=commit%3Bh=eb51b1ea1f75a0ec17c9c5937cb28df1e8eeec56

Source: cve@mitre.org

http://www.openwall.com/lists/oss-security/2023/04/19/10

Source: cve@mitre.org

Mailing List Patch Third Party Advisory

http://www.openwall.com/lists/oss-security/2023/04/19/11

Source: cve@mitre.org

Exploit Mailing List Third Party Advisory

https://lists.debian.org/debian-lts-announce/2023/12/msg00004.html

Source: cve@mitre.org

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LU4MYMKFEZQ5VSCVLRIZGDQOUW3T44GT/

Source: cve@mitre.org

https://security.netapp.com/advisory/ntap-20230517-0009/

Source: cve@mitre.org

https://support.apple.com/kb/HT213843

Source: cve@mitre.org

https://support.apple.com/kb/HT213844

Source: cve@mitre.org

https://support.apple.com/kb/HT213845

Source: cve@mitre.org

https://www.openwall.com/lists/oss-security/2023/04/12/5

Source: cve@mitre.org

Mailing List

https://www.openwall.com/lists/oss-security/2023/04/13/4

Source: cve@mitre.org

Mailing List Patch

http://ncurses.scripts.mit.edu/?p=ncurses.git%3Ba=commit%3Bh=eb51b1ea1f75a0ec17c9c5937cb28df1e8eeec56

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.openwall.com/lists/oss-security/2023/04/19/10

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing List Patch Third Party Advisory

http://www.openwall.com/lists/oss-security/2023/04/19/11

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit Mailing List Third Party Advisory

https://lists.debian.org/debian-lts-announce/2023/12/msg00004.html

Source: af854a3a-2127-422b-91ae-364da2661108

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LU4MYMKFEZQ5VSCVLRIZGDQOUW3T44GT/

Source: af854a3a-2127-422b-91ae-364da2661108

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LU4MYMKFEZQ5VSCVLRIZGDQOUW3T44GT/

Source: af854a3a-2127-422b-91ae-364da2661108

https://security.netapp.com/advisory/ntap-20230517-0009/

Source: af854a3a-2127-422b-91ae-364da2661108

https://support.apple.com/kb/HT213843

Source: af854a3a-2127-422b-91ae-364da2661108

https://support.apple.com/kb/HT213844

Source: af854a3a-2127-422b-91ae-364da2661108

https://support.apple.com/kb/HT213845

Source: af854a3a-2127-422b-91ae-364da2661108

https://www.openwall.com/lists/oss-security/2023/04/12/5

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing List

https://www.openwall.com/lists/oss-security/2023/04/13/4

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing List Patch

23 reference(s) from NVD

Quick Stats

CVSS v3 Score

7.8 / 10.0

EPSS (Exploit Probability)

0.1%

21th percentile

Exploitation Status

Not in CISA KEV

Weaknesses (CWE)

CWE-787

Affected Vendors

gnu

Related CVEs

CVE-2025-52691 10.0

CVE-2025-15168 7.3

CVE-2025-15167 7.3

CVE-2025-15166 7.3

CVE-2025-15165 7.3