ELSA-2023-6698

ULN >
Oracle Linux Errata repository >
ELSA-2023-6698

ELSA-2023-6698 - ncurses security and bug fix update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2023-11-11

Description

[6.2-10.20210508]
- ignore TERMINFO and HOME only if setuid/setgid/capability (#2211666)

[6.2-9.20210508]
- fix buffer overflow on terminfo with too many capabilities (CVE-2023-29491)
- ignore TERMINFO and HOME environment variables if running as root (#2211666)

Related CVEs

CVE-2023-29491

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	ncurses-6.2-10.20210508.el9.src.rpm	1537a15113afd32bfea569a129e5b8e5	-	ol9_aarch64_appstream
	ncurses-6.2-10.20210508.el9.src.rpm	1537a15113afd32bfea569a129e5b8e5	-	ol9_aarch64_baseos_latest
	ncurses-6.2-10.20210508.el9.src.rpm	1537a15113afd32bfea569a129e5b8e5	-	ol9_aarch64_u3_baseos_base
	ncurses-6.2-10.20210508.el9.aarch64.rpm	fff33fae4468b75e3b08078dea6aa656	-	ol9_aarch64_baseos_latest
	ncurses-6.2-10.20210508.el9.aarch64.rpm	fff33fae4468b75e3b08078dea6aa656	-	ol9_aarch64_u3_baseos_base
	ncurses-base-6.2-10.20210508.el9.noarch.rpm	b137e8d7352420422659f7b7c93cb537	-	ol9_aarch64_baseos_latest
	ncurses-base-6.2-10.20210508.el9.noarch.rpm	b137e8d7352420422659f7b7c93cb537	-	ol9_aarch64_u3_baseos_base
	ncurses-c++-libs-6.2-10.20210508.el9.aarch64.rpm	6dae853896311ae2708c15d49cf11007	-	ol9_aarch64_appstream
	ncurses-devel-6.2-10.20210508.el9.aarch64.rpm	c5581f9854441e29bd1ba50dffab1e8d	-	ol9_aarch64_appstream
	ncurses-libs-6.2-10.20210508.el9.aarch64.rpm	a39582511baafd29941b797206367a74	-	ol9_aarch64_baseos_latest
	ncurses-libs-6.2-10.20210508.el9.aarch64.rpm	a39582511baafd29941b797206367a74	-	ol9_aarch64_u3_baseos_base
	ncurses-term-6.2-10.20210508.el9.noarch.rpm	b231931ea469735d913ff37ac5299577	-	ol9_aarch64_appstream

Oracle Linux 9 (x86_64)	ncurses-6.2-10.20210508.el9.src.rpm	1537a15113afd32bfea569a129e5b8e5	-	ol9_x86_64_appstream
	ncurses-6.2-10.20210508.el9.src.rpm	1537a15113afd32bfea569a129e5b8e5	-	ol9_x86_64_baseos_latest
	ncurses-6.2-10.20210508.el9.src.rpm	1537a15113afd32bfea569a129e5b8e5	-	ol9_x86_64_u3_baseos_base
	ncurses-6.2-10.20210508.el9.x86_64.rpm	2ea0e29d19f61e6a687173373ed16e86	-	ol9_x86_64_baseos_latest
	ncurses-6.2-10.20210508.el9.x86_64.rpm	2ea0e29d19f61e6a687173373ed16e86	-	ol9_x86_64_u3_baseos_base
	ncurses-base-6.2-10.20210508.el9.noarch.rpm	b137e8d7352420422659f7b7c93cb537	-	ol9_x86_64_baseos_latest
	ncurses-base-6.2-10.20210508.el9.noarch.rpm	b137e8d7352420422659f7b7c93cb537	-	ol9_x86_64_u3_baseos_base
	ncurses-c++-libs-6.2-10.20210508.el9.i686.rpm	c43edc7886a441048a8b47d42c6da498	-	ol9_x86_64_appstream
	ncurses-c++-libs-6.2-10.20210508.el9.x86_64.rpm	0ad769d230fbe18887e9f40be873c904	-	ol9_x86_64_appstream
	ncurses-devel-6.2-10.20210508.el9.i686.rpm	11014404cff99c63094038ff8390f222	-	ol9_x86_64_appstream
	ncurses-devel-6.2-10.20210508.el9.x86_64.rpm	f39b3a45031a32e55464d8ebd09ce2fe	-	ol9_x86_64_appstream
	ncurses-libs-6.2-10.20210508.el9.i686.rpm	3d2062e40bca3024d62a9c0f56148e61	-	ol9_x86_64_baseos_latest
	ncurses-libs-6.2-10.20210508.el9.i686.rpm	3d2062e40bca3024d62a9c0f56148e61	-	ol9_x86_64_u3_baseos_base
	ncurses-libs-6.2-10.20210508.el9.x86_64.rpm	861831117732d7e05fce6c92324d3b82	-	ol9_x86_64_baseos_latest
	ncurses-libs-6.2-10.20210508.el9.x86_64.rpm	861831117732d7e05fce6c92324d3b82	-	ol9_x86_64_u3_baseos_base
	ncurses-term-6.2-10.20210508.el9.noarch.rpm	b231931ea469735d913ff37ac5299577	-	ol9_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691