- Reported
-
- Issued
-
- Package
-
ncurses
(crates.io)
- Type
-
Vulnerability
- Aliases
-
- Details
-
https://github.com/RustSec/advisory-db/issues/106
- Patched
-
no patched versions
- Affected Functions
- Version
ncurses::instr-
ncurses::mvprintw-
ncurses::mvwinstr-
ncurses::mvwprintw-
ncurses::printw-
Description
ncurses exposes functions from the ncurses library which:
- Pass buffers without length to C functions that may write an arbitrary amount of
data, leading to a buffer overflow. (
instr, mvwinstr, etc)
- Passes rust &str to strings expecting C format arguments, allowing hostile
input to execute a format string attack, which trivially allows writing
arbitrary data to stack memory (functions in the
printw family).