ELSA-2023-6698

ULN >
Oracle Linux Errata repository >
ELSA-2023-6698

ELSA-2023-6698 - ncurses security and bug fix update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2023-11-11

Description

[6.2-10.20210508]
- ignore TERMINFO and HOME only if setuid/setgid/capability (#2211666)

[6.2-9.20210508]
- fix buffer overflow on terminfo with too many capabilities (CVE-2023-29491)
- ignore TERMINFO and HOME environment variables if running as root (#2211666)

Related CVEs

CVE-2023-29491

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	ncurses-6.2-10.20210508.el9.src.rpm	f89cacf089cea3ee7d89825eaa9a14cd63446e5ec4014a932da6e2c674e8d218	-	ol9_aarch64_appstream
	ncurses-6.2-10.20210508.el9.src.rpm	f89cacf089cea3ee7d89825eaa9a14cd63446e5ec4014a932da6e2c674e8d218	-	ol9_aarch64_baseos_latest
	ncurses-6.2-10.20210508.el9.src.rpm	f89cacf089cea3ee7d89825eaa9a14cd63446e5ec4014a932da6e2c674e8d218	-	ol9_aarch64_u3_baseos_base
	ncurses-6.2-10.20210508.el9.src.rpm	f89cacf089cea3ee7d89825eaa9a14cd63446e5ec4014a932da6e2c674e8d218	-	ol9_aarch64_u4_baseos_base
	ncurses-6.2-10.20210508.el9.src.rpm	f89cacf089cea3ee7d89825eaa9a14cd63446e5ec4014a932da6e2c674e8d218	-	ol9_aarch64_u5_baseos_base
	ncurses-6.2-10.20210508.el9.aarch64.rpm	38bb71b8a6763410a841c95655148ca0d685237f94d3586103f65c154ab5cf25	-	ol9_aarch64_baseos_latest
	ncurses-6.2-10.20210508.el9.aarch64.rpm	38bb71b8a6763410a841c95655148ca0d685237f94d3586103f65c154ab5cf25	-	ol9_aarch64_u3_baseos_base
	ncurses-6.2-10.20210508.el9.aarch64.rpm	38bb71b8a6763410a841c95655148ca0d685237f94d3586103f65c154ab5cf25	-	ol9_aarch64_u4_baseos_base
	ncurses-6.2-10.20210508.el9.aarch64.rpm	38bb71b8a6763410a841c95655148ca0d685237f94d3586103f65c154ab5cf25	-	ol9_aarch64_u5_baseos_base
	ncurses-base-6.2-10.20210508.el9.noarch.rpm	91a41bfafe0c92283940f617d968c84e2fedeb25323cc7b1c646e5e950716412	-	ol9_aarch64_baseos_latest
	ncurses-base-6.2-10.20210508.el9.noarch.rpm	91a41bfafe0c92283940f617d968c84e2fedeb25323cc7b1c646e5e950716412	-	ol9_aarch64_u3_baseos_base
	ncurses-base-6.2-10.20210508.el9.noarch.rpm	91a41bfafe0c92283940f617d968c84e2fedeb25323cc7b1c646e5e950716412	-	ol9_aarch64_u4_baseos_base
	ncurses-base-6.2-10.20210508.el9.noarch.rpm	91a41bfafe0c92283940f617d968c84e2fedeb25323cc7b1c646e5e950716412	-	ol9_aarch64_u5_baseos_base
	ncurses-c++-libs-6.2-10.20210508.el9.aarch64.rpm	1cc0aa3a068182e9f9fbca8a0c09cc82d03d28d5bf954208bd51b8598b0ffa6b	-	ol9_aarch64_appstream
	ncurses-devel-6.2-10.20210508.el9.aarch64.rpm	ac30d0ec57589b7253c769d3d033f09f5c6c8f0e736bf0cfe6cbf747291b48be	-	ol9_aarch64_appstream
	ncurses-libs-6.2-10.20210508.el9.aarch64.rpm	3d4faa56e54c85e4ed6ce99356b859b42184063d82cc965a79ada1697b8f55d6	-	ol9_aarch64_baseos_latest
	ncurses-libs-6.2-10.20210508.el9.aarch64.rpm	3d4faa56e54c85e4ed6ce99356b859b42184063d82cc965a79ada1697b8f55d6	-	ol9_aarch64_u3_baseos_base
	ncurses-libs-6.2-10.20210508.el9.aarch64.rpm	3d4faa56e54c85e4ed6ce99356b859b42184063d82cc965a79ada1697b8f55d6	-	ol9_aarch64_u4_baseos_base
	ncurses-libs-6.2-10.20210508.el9.aarch64.rpm	3d4faa56e54c85e4ed6ce99356b859b42184063d82cc965a79ada1697b8f55d6	-	ol9_aarch64_u5_baseos_base
	ncurses-term-6.2-10.20210508.el9.noarch.rpm	81aea48aa8f9ae7b0732479b49e9ebc4eb807b6bbbc79702f01e1ba9785a3a63	-	ol9_aarch64_appstream

Oracle Linux 9 (x86_64)	ncurses-6.2-10.20210508.el9.src.rpm	f89cacf089cea3ee7d89825eaa9a14cd63446e5ec4014a932da6e2c674e8d218	-	ol9_x86_64_appstream
	ncurses-6.2-10.20210508.el9.src.rpm	f89cacf089cea3ee7d89825eaa9a14cd63446e5ec4014a932da6e2c674e8d218	-	ol9_x86_64_baseos_latest
	ncurses-6.2-10.20210508.el9.src.rpm	f89cacf089cea3ee7d89825eaa9a14cd63446e5ec4014a932da6e2c674e8d218	-	ol9_x86_64_u3_baseos_base
	ncurses-6.2-10.20210508.el9.src.rpm	f89cacf089cea3ee7d89825eaa9a14cd63446e5ec4014a932da6e2c674e8d218	-	ol9_x86_64_u4_baseos_base
	ncurses-6.2-10.20210508.el9.src.rpm	f89cacf089cea3ee7d89825eaa9a14cd63446e5ec4014a932da6e2c674e8d218	-	ol9_x86_64_u5_baseos_base
	ncurses-6.2-10.20210508.el9.x86_64.rpm	849044fa0d05b25cc5c35056cc0f1f159aafa742c73200faf92109a238132241	-	ol9_x86_64_baseos_latest
	ncurses-6.2-10.20210508.el9.x86_64.rpm	849044fa0d05b25cc5c35056cc0f1f159aafa742c73200faf92109a238132241	-	ol9_x86_64_u3_baseos_base
	ncurses-6.2-10.20210508.el9.x86_64.rpm	849044fa0d05b25cc5c35056cc0f1f159aafa742c73200faf92109a238132241	-	ol9_x86_64_u4_baseos_base
	ncurses-6.2-10.20210508.el9.x86_64.rpm	849044fa0d05b25cc5c35056cc0f1f159aafa742c73200faf92109a238132241	-	ol9_x86_64_u5_baseos_base
	ncurses-base-6.2-10.20210508.el9.noarch.rpm	91a41bfafe0c92283940f617d968c84e2fedeb25323cc7b1c646e5e950716412	-	ol9_x86_64_baseos_latest
	ncurses-base-6.2-10.20210508.el9.noarch.rpm	91a41bfafe0c92283940f617d968c84e2fedeb25323cc7b1c646e5e950716412	-	ol9_x86_64_u3_baseos_base
	ncurses-base-6.2-10.20210508.el9.noarch.rpm	91a41bfafe0c92283940f617d968c84e2fedeb25323cc7b1c646e5e950716412	-	ol9_x86_64_u4_baseos_base
	ncurses-base-6.2-10.20210508.el9.noarch.rpm	91a41bfafe0c92283940f617d968c84e2fedeb25323cc7b1c646e5e950716412	-	ol9_x86_64_u5_baseos_base
	ncurses-c++-libs-6.2-10.20210508.el9.i686.rpm	4a80ffbd53f9feacfd7bb83a61374f69130b8bb587c7e837559a83c3cfbb85f7	-	ol9_x86_64_appstream
	ncurses-c++-libs-6.2-10.20210508.el9.x86_64.rpm	4b30b1834ab64363f98e830c0a50adddf6684b41b3ced9436cbe7a877804a88b	-	ol9_x86_64_appstream
	ncurses-devel-6.2-10.20210508.el9.i686.rpm	1c971e1e2126c77edd264bc7ca92b1e3d827228f09ae38d527adcb7e683385f5	-	ol9_x86_64_appstream
	ncurses-devel-6.2-10.20210508.el9.x86_64.rpm	29e21a64c58f8dfbd310b8c965fad68f6f0f08dde970187980ea3a19f6e4c976	-	ol9_x86_64_appstream
	ncurses-libs-6.2-10.20210508.el9.i686.rpm	282c45e58a5fc91b627d1451fefb5d2ec96823e05213950b09cb774fe1873d7d	-	ol9_x86_64_baseos_latest
	ncurses-libs-6.2-10.20210508.el9.i686.rpm	282c45e58a5fc91b627d1451fefb5d2ec96823e05213950b09cb774fe1873d7d	-	ol9_x86_64_u3_baseos_base
	ncurses-libs-6.2-10.20210508.el9.i686.rpm	282c45e58a5fc91b627d1451fefb5d2ec96823e05213950b09cb774fe1873d7d	-	ol9_x86_64_u4_baseos_base
	ncurses-libs-6.2-10.20210508.el9.i686.rpm	282c45e58a5fc91b627d1451fefb5d2ec96823e05213950b09cb774fe1873d7d	-	ol9_x86_64_u5_baseos_base
	ncurses-libs-6.2-10.20210508.el9.x86_64.rpm	28d4e2f0d44791670da2dba69a32f0e0bfd5b8ef015d7386b1cabeaded67167b	-	ol9_x86_64_baseos_latest
	ncurses-libs-6.2-10.20210508.el9.x86_64.rpm	28d4e2f0d44791670da2dba69a32f0e0bfd5b8ef015d7386b1cabeaded67167b	-	ol9_x86_64_u3_baseos_base
	ncurses-libs-6.2-10.20210508.el9.x86_64.rpm	28d4e2f0d44791670da2dba69a32f0e0bfd5b8ef015d7386b1cabeaded67167b	-	ol9_x86_64_u4_baseos_base
	ncurses-libs-6.2-10.20210508.el9.x86_64.rpm	28d4e2f0d44791670da2dba69a32f0e0bfd5b8ef015d7386b1cabeaded67167b	-	ol9_x86_64_u5_baseos_base
	ncurses-term-6.2-10.20210508.el9.noarch.rpm	81aea48aa8f9ae7b0732479b49e9ebc4eb807b6bbbc79702f01e1ba9785a3a63	-	ol9_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691