Debian Security Advisory
ncurses -- setuid ncurses programs allow opening arbitrary files
- Date Reported:
- 27 Aug 1998
- Affected Packages:
- ncurses3.4-dev
- Vulnerable:
- Yes
- Security database references:
- No other external database security references currently available.
- More information:
-
We have received a report that using ncurses in setuid programs will
give the user a way to open arbitrary files.
We recommend you upgrade your ncurses3.4-dev package immediately.
- Fixed in:
- All - (in release 2.0) 1.9.9g-8.9.1