CVE 2017-13729

There is an illegal address access in the _nc_save_str function in alloc_entry.c in ncurses 6.0. It will lead to a remote denial of service attack.

Related bugs and status

CVE-2017-13729 (Candidate) is related to these bugs:

Bug #1637239: Please merge ncurses 6.0+20161126-1 (main) from Debian unstable (main)

Summary				In	Importance	Status
	1637239	Please merge ncurses 6.0+20161126-1 (main) from Debian unstable (main)		ncurses (Ubuntu)	Wishlist	Fix Released

See the

CVE page on Mitre.org for more details.