Explore top 10 tips to secure your open-source projects now. Read More
×ncurses could be made to crash if it opened a specially crafted file.. ========================================================================== Ubuntu Security Notice USN-8503-1 July 02, 2026 ncurses vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS - Ubuntu 14.04 LTS Summary: ncurses could be made to crash if it opened a specially crafted file. Software Description: - ncurses: shared libraries for terminal handling Details: It was discovered that ncurses incorrectly handled certain terminfo entries in the infocmp tool. An attacker could possibly use this issue to cause a denial of service via a crafted terminfo file. The default compiler options for affected releases should reduce the vulnerability to a denial of service. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 20.04 LTS ncurses-bin 6.2-0ubuntu2.1+esm1 Available with Ubuntu Pro Ubuntu 18.04 LTS ncurses-bin 6.1-1ubuntu1.18.04.1+esm3 Available with Ubuntu Pro Ubuntu 16.04 LTS ncurses-bin 6.0+20160213-1ubuntu1+esm6 Available with Ubuntu Pro Ubuntu 14.04 LTS ncurses-bin 5.9+20140118-1ubuntu1+esm6 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-8503-1 CVE-2025-69720 . A serious ncurses bug could lead to a denial of service on multiple Ubuntu versions. Immediate updates recommended.. Ubuntu Security, ncurses Update, System Security, Linux Advisory. . Severity: Critical. LinuxSecurity.com Team
An update that solves one vulnerability can now be installed.. # Security update for ncurses Announcement ID: SUSE-SU-2026:22294-1 Release Date: 2026-06-20T18:11:34Z Rating: moderate References: * bsc#1259924 Cross-References: * CVE-2025-69720 CVSS scores: * CVE-2025-69720 ( SUSE ): 1.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:A/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2025-69720 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L * CVE-2025-69720 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-69720 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L * CVE-2025-69720 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves one vulnerability can now be installed. ## Description: This update for ncurses fixes the following issue: * CVE-2025-69720: buffer overflow in function `analyze_string()`of `progs/infocmp.c` (bsc#1259924). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-1004=1 * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-1004=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * terminfo-screen-6.5.20250531-160000.3.1 * ncurses-devel-debuginfo-6.5.20250531-160000.3.1 * ncurses-examples-debuginfo-6.5.20250531-160000.3.1 * ncurses-utils-6.5.20250531-160000.3.1 * ncurses-devel-6.5.20250531-160000.3.1 * libncurses5-6.5.20250531-160000.3.1 * libncurses5-debuginfo-6.5.20250531-160000.3.1 * ncurses-examples-6.5.20250531-160000.3.1 * ncurses-debugsource-6.5.20250531-160000.3.1 * libncurses6-debuginfo-6.5.20250531-160000.3.1 *libncurses6-6.5.20250531-160000.3.1 * terminfo-iterm-6.5.20250531-160000.3.1 * tack-1.11.20250503-160000.3.1 * tack-debuginfo-1.11.20250503-160000.3.1 * terminfo-6.5.20250531-160000.3.1 * terminfo-base-6.5.20250531-160000.3.1 * ncurses-utils-debuginfo-6.5.20250531-160000.3.1 * ncurses-devel-static-6.5.20250531-160000.3.1 * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * terminfo-screen-6.5.20250531-160000.3.1 * ncurses-examples-debuginfo-6.5.20250531-160000.3.1 * ncurses-devel-debuginfo-6.5.20250531-160000.3.1 * ncurses-utils-6.5.20250531-160000.3.1 * ncurses-devel-6.5.20250531-160000.3.1 * ncurses-examples-6.5.20250531-160000.3.1 * libncurses5-debuginfo-6.5.20250531-160000.3.1 * libncurses5-6.5.20250531-160000.3.1 * ncurses-debugsource-6.5.20250531-160000.3.1 * libncurses6-debuginfo-6.5.20250531-160000.3.1 * libncurses6-6.5.20250531-160000.3.1 * terminfo-iterm-6.5.20250531-160000.3.1 * tack-1.11.20250503-160000.3.1 * tack-debuginfo-1.11.20250503-160000.3.1 * terminfo-6.5.20250531-160000.3.1 * terminfo-base-6.5.20250531-160000.3.1 * ncurses-utils-debuginfo-6.5.20250531-160000.3.1 * ncurses-devel-static-6.5.20250531-160000.3.1 ## References: * https://www.suse.com/security/cve/CVE-2025-69720.html * https://bugzilla.suse.com/show_bug.cgi?id=1259924 . SUSE security update for ncurses resolves a moderate buffer overflow issue. Update to mitigate risks now.. SUSE Security Update, ncurses, buffer overflow, installation. . Severity: moderate. LinuxSecurity.com Team
An update that solves one vulnerability can now be installed.. # Security update for ncurses Announcement ID: SUSE-SU-2026:22228-1 Release Date: 2026-06-20T18:09:54Z Rating: moderate References: * bsc#1259924 Cross-References: * CVE-2025-69720 CVSS scores: * CVE-2025-69720 ( SUSE ): 1.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:A/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2025-69720 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L * CVE-2025-69720 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-69720 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L * CVE-2025-69720 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.2 An update that solves one vulnerability can now be installed. ## Description: This update for ncurses fixes the following issue: * CVE-2025-69720: buffer overflow in function `analyze_string()`of `progs/infocmp.c` (bsc#1259924). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.2 zypper in -t patch SUSE-SL-Micro-6.2-1004=1 ## Package List: * SUSE Linux Micro 6.2 (aarch64 ppc64le s390x x86_64) * ncurses-utils-6.5.20250531-160000.3.1 * libncurses6-6.5.20250531-160000.3.1 * ncurses-utils-debuginfo-6.5.20250531-160000.3.1 * terminfo-base-6.5.20250531-160000.3.1 * ncurses-debugsource-6.5.20250531-160000.3.1 * libncurses6-debuginfo-6.5.20250531-160000.3.1 ## References: * https://www.suse.com/security/cve/CVE-2025-69720.html * https://bugzilla.suse.com/show_bug.cgi?id=1259924 . Security update for ncurses addresses a buffer overflow issue in SUSE Micro 6.2. Install the patch to maintain security.. ncurses update,suse security patch,buffer overflow fix,linux security news. . Severity: moderate. LinuxSecurity.com Team
An update that solves one vulnerability can now be installed.. # Security update for ncurses Announcement ID: SUSE-SU-2026:21247-1 Release Date: 2026-04-21T08:52:32Z Rating: moderate References: * bsc#1259924 Cross-References: * CVE-2025-69720 CVSS scores: * CVE-2025-69720 ( SUSE ): 1.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:A/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2025-69720 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L * CVE-2025-69720 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-69720 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L * CVE-2025-69720 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.0 An update that solves one vulnerability can now be installed. ## Description: This update for ncurses fixes the following issue: * CVE-2025-69720: buffer overflow in function `analyze_string()`of `progs/infocmp.c` (bsc#1259924). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.0 zypper in -t patch SUSE-SLE-Micro-6.0-681=1 ## Package List: * SUSE Linux Micro 6.0 (aarch64 s390x x86_64) * libncurses6-debuginfo-6.4.20240224-11.1 * ncurses-debugsource-6.4.20240224-11.1 * ncurses-utils-6.4.20240224-11.1 * libncurses6-6.4.20240224-11.1 * terminfo-base-6.4.20240224-11.1 * ncurses-utils-debuginfo-6.4.20240224-11.1 ## References: * https://www.suse.com/security/cve/CVE-2025-69720.html * https://bugzilla.suse.com/show_bug.cgi?id=1259924 . This advisory addresses a moderate security issue in ncurses for SUSE, with important update instructions for affected users.. SUSE security update, ncurses patch, buffer overflow fix. . LinuxSecurity.com Team
An update that solves one vulnerability can now be installed.. # Security update for ncurses Announcement ID: SUSE-SU-2026:21261-1 Release Date: 2026-04-21T08:29:18Z Rating: moderate References: * bsc#1259924 Cross-References: * CVE-2025-69720 CVSS scores: * CVE-2025-69720 ( SUSE ): 1.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:A/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2025-69720 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L * CVE-2025-69720 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-69720 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L * CVE-2025-69720 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Micro 6.1 An update that solves one vulnerability can now be installed. ## Description: This update for ncurses fixes the following issue: * CVE-2025-69720: buffer overflow in function `analyze_string()`of `progs/infocmp.c` (bsc#1259924). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Micro 6.1 zypper in -t patch SUSE-SLE-Micro-6.1-500=1 ## Package List: * SUSE Linux Micro 6.1 (aarch64 ppc64le s390x x86_64) * ncurses-utils-6.4.20240224-slfo.1.1_2.1 * terminfo-base-6.4.20240224-slfo.1.1_2.1 * ncurses-debugsource-6.4.20240224-slfo.1.1_2.1 * libncurses6-6.4.20240224-slfo.1.1_2.1 * libncurses6-debuginfo-6.4.20240224-slfo.1.1_2.1 * ncurses-utils-debuginfo-6.4.20240224-slfo.1.1_2.1 ## References: * https://www.suse.com/security/cve/CVE-2025-69720.html * https://bugzilla.suse.com/show_bug.cgi?id=1259924 . Critical SUSE update resolves buffer overflow in ncurses, patching vulnerability CVE-2025-69720 with recommended installation methods.. SUSE Linux Micro 6.1,ncurses update,buffer overflow patch. . Severity: Important. LinuxSecurity.com Team
An update that solves one vulnerability can now be installed.. # Security update for ncurses Announcement ID: SUSE-SU-2026:1510-1 Release Date: 2026-04-21T06:28:34Z Rating: moderate References: * bsc#1259924 Cross-References: * CVE-2025-69720 CVSS scores: * CVE-2025-69720 ( SUSE ): 1.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:A/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2025-69720 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L * CVE-2025-69720 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-69720 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L * CVE-2025-69720 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * Basesystem Module 15-SP7 * Development Tools Module 15-SP7 * Legacy Module 15-SP7 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves one vulnerability can now be installed. ## Description: This update for ncurses fixes the following issue: * CVE-2025-69720: buffer overflow in function `analyze_string()`of `progs/infocmp.c` (bsc#1259924). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-1510=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2026-1510=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-1510=1 *SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2026-1510=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2026-1510=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-1510=1 * Development Tools Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP7-2026-1510=1 * Legacy Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Legacy-15-SP7-2026-1510=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2026-1510=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2026-1510=1 ## Package List: * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * terminfo-base-6.1-150000.5.33.1 * ncurses-utils-debuginfo-6.1-150000.5.33.1 * libncurses6-6.1-150000.5.33.1 * ncurses-utils-6.1-150000.5.33.1 * libncurses6-debuginfo-6.1-150000.5.33.1 * terminfo-6.1-150000.5.33.1 * ncurses-debugsource-6.1-150000.5.33.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * terminfo-base-6.1-150000.5.33.1 * ncurses-utils-debuginfo-6.1-150000.5.33.1 * libncurses6-6.1-150000.5.33.1 * ncurses-utils-6.1-150000.5.33.1 * libncurses6-debuginfo-6.1-150000.5.33.1 * terminfo-6.1-150000.5.33.1 * ncurses-debugsource-6.1-150000.5.33.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * terminfo-base-6.1-150000.5.33.1 * ncurses-utils-debuginfo-6.1-150000.5.33.1 * libncurses6-6.1-150000.5.33.1 * ncurses-utils-6.1-150000.5.33.1 * libncurses6-debuginfo-6.1-150000.5.33.1 * terminfo-6.1-150000.5.33.1 * ncurses-debugsource-6.1-150000.5.33.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * terminfo-base-6.1-150000.5.33.1 * ncurses-utils-debuginfo-6.1-150000.5.33.1 * libncurses6-6.1-150000.5.33.1 * ncurses-utils-6.1-150000.5.33.1 * libncurses6-debuginfo-6.1-150000.5.33.1 *terminfo-6.1-150000.5.33.1 * ncurses-debugsource-6.1-150000.5.33.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64) * terminfo-base-6.1-150000.5.33.1 * ncurses-utils-debuginfo-6.1-150000.5.33.1 * libncurses6-6.1-150000.5.33.1 * ncurses-utils-6.1-150000.5.33.1 * libncurses6-debuginfo-6.1-150000.5.33.1 * terminfo-6.1-150000.5.33.1 * ncurses-debugsource-6.1-150000.5.33.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * ncurses-devel-6.1-150000.5.33.1 * tack-6.1-150000.5.33.1 * terminfo-base-6.1-150000.5.33.1 * tack-debuginfo-6.1-150000.5.33.1 * ncurses-utils-debuginfo-6.1-150000.5.33.1 * libncurses6-6.1-150000.5.33.1 * ncurses-utils-6.1-150000.5.33.1 * libncurses6-debuginfo-6.1-150000.5.33.1 * terminfo-screen-6.1-150000.5.33.1 * terminfo-6.1-150000.5.33.1 * terminfo-iterm-6.1-150000.5.33.1 * ncurses-debugsource-6.1-150000.5.33.1 * ncurses-devel-debuginfo-6.1-150000.5.33.1 * Basesystem Module 15-SP7 (x86_64) * libncurses6-32bit-6.1-150000.5.33.1 * libncurses6-32bit-debuginfo-6.1-150000.5.33.1 * Development Tools Module 15-SP7 (x86_64) * ncurses-devel-32bit-6.1-150000.5.33.1 * ncurses-devel-32bit-debuginfo-6.1-150000.5.33.1 * Legacy Module 15-SP7 (aarch64 ppc64le s390x x86_64) * ncurses5-devel-6.1-150000.5.33.1 * ncurses-debugsource-6.1-150000.5.33.1 * libncurses5-6.1-150000.5.33.1 * libncurses5-debuginfo-6.1-150000.5.33.1 * Legacy Module 15-SP7 (x86_64) * libncurses5-32bit-debuginfo-6.1-150000.5.33.1 * libncurses5-32bit-6.1-150000.5.33.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * terminfo-base-6.1-150000.5.33.1 * ncurses-utils-debuginfo-6.1-150000.5.33.1 * libncurses6-6.1-150000.5.33.1 * ncurses-utils-6.1-150000.5.33.1 * libncurses6-debuginfo-6.1-150000.5.33.1 * terminfo-6.1-150000.5.33.1 * ncurses-debugsource-6.1-150000.5.33.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) *terminfo-base-6.1-150000.5.33.1 * ncurses-utils-debuginfo-6.1-150000.5.33.1 * libncurses6-6.1-150000.5.33.1 * ncurses-utils-6.1-150000.5.33.1 * libncurses6-debuginfo-6.1-150000.5.33.1 * terminfo-6.1-150000.5.33.1 * ncurses-debugsource-6.1-150000.5.33.1 ## References: * https://www.suse.com/security/cve/CVE-2025-69720.html * https://bugzilla.suse.com/show_bug.cgi?id=1259924 . An update has been released for ncurses, addressing a moderate issue related to a buffer overflow vulnerability.. ncurses security patch,SUSE ncurses update,buffer overflow fix,SUSE Linux improvements. . LinuxSecurity.com Team
An update that solves one vulnerability can now be installed.. # Security update for ncurses Announcement ID: SUSE-SU-2026:1499-1 Release Date: 2026-04-20T16:16:27Z Rating: moderate References: * bsc#1259924 Cross-References: * CVE-2025-69720 CVSS scores: * CVE-2025-69720 ( SUSE ): 1.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:A/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N * CVE-2025-69720 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L * CVE-2025-69720 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2025-69720 ( NVD ): 7.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L * CVE-2025-69720 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security * SUSE Linux Enterprise Server for SAP Applications 12 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for ncurses fixes the following issue: * CVE-2025-69720: buffer overflow in function `analyze_string()`of `progs/infocmp.c` (bsc#1259924). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2026-1499=1 ## Package List: * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security (x86_64) * ncurses-devel-5.9-91.1 * tack-debuginfo-5.9-91.1 * ncurses-devel-32bit-5.9-91.1 * ncurses-devel-debuginfo-32bit-5.9-91.1 * ncurses-utils-debuginfo-5.9-91.1 * ncurses-utils-5.9-91.1 * libncurses5-32bit-5.9-91.1 * libncurses5-5.9-91.1 * libncurses5-debuginfo-32bit-5.9-91.1 * terminfo-5.9-91.1 * tack-5.9-91.1 * terminfo-base-5.9-91.1 * libncurses6-debuginfo-32bit-5.9-91.1 * ncurses-debugsource-5.9-91.1 *libncurses6-debuginfo-5.9-91.1 * libncurses5-debuginfo-5.9-91.1 * ncurses-devel-debuginfo-5.9-91.1 * libncurses6-32bit-5.9-91.1 * libncurses6-5.9-91.1 ## References: * https://www.suse.com/security/cve/CVE-2025-69720.html * https://bugzilla.suse.com/show_bug.cgi?id=1259924 . One vulnerability in ncurses has a moderate severity rating resolved in the latest SUSE update.. ncurses patch SUSE security update moderate. . LinuxSecurity.com Team
Moderate: ncurses security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2026:5913", "synopsis": "Moderate: ncurses security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for ncurses.\nThis update affects Rocky Linux 10.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The ncurses (new curses) library routines are a terminal-independent method of updating character screens with reasonable optimization. The ncurses packages contain support utilities including a terminfo compiler tic, a decompiler infocmp, clear, tput, tset, and a termcap conversion tool captoinfo.\n\nSecurity Fix(es):\n\n* ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution. (CVE-2025-69720)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", "solution": null, "affectedProducts": ["Rocky Linux 10"], "fixes": [{"ticket": "2449037", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2449037", "description": ""}], "cves": [{"name": "CVE-2025-69720", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-69720", "cvss3ScoringVector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "cvss3BaseScore": "7.8", "cwe": "CWE-120"}], "references": [], "publishedAt": "2026-04-09T12:07:05.484110Z", "rpms": {"Rocky Linux 10": {"nvras": ["ncurses-devel-0:6.4-15.20240127.el10_1.s390x.rpm", "ncurses-libs-debuginfo-0:6.4-15.20240127.el10_1.s390x.rpm", "ncurses-base-0:6.4-15.20240127.el10_1.noarch.rpm", "ncurses-debugsource-0:6.4-15.20240127.el10_1.s390x.rpm", "ncurses-libs-debuginfo-0:6.4-15.20240127.el10_1.ppc64le.rpm", "ncurses-c++-libs-debuginfo-0:6.4-15.20240127.el10_1.ppc64le.rpm", "ncurses-c++-libs-0:6.4-15.20240127.el10_1.x86_64.rpm","ncurses-c++-libs-debuginfo-0:6.4-15.20240127.el10_1.s390x.rpm", "ncurses-libs-0:6.4-15.20240127.el10_1.x86_64.rpm", "ncurses-0:6.4-15.20240127.el10_1.src.rpm", "ncurses-libs-debuginfo-0:6.4-15.20240127.el10_1.aarch64.rpm", "ncurses-debugsource-0:6.4-15.20240127.el10_1.ppc64le.rpm", "ncurses-c++-libs-0:6.4-15.20240127.el10_1.ppc64le.rpm", "ncurses-0:6.4-15.20240127.el10_1.x86_64.rpm", "ncurses-devel-0:6.4-15.20240127.el10_1.x86_64.rpm", "ncurses-debuginfo-0:6.4-15.20240127.el10_1.x86_64.rpm", "ncurses-devel-0:6.4-15.20240127.el10_1.ppc64le.rpm", "ncurses-debuginfo-0:6.4-15.20240127.el10_1.s390x.rpm", "ncurses-0:6.4-15.20240127.el10_1.s390x.rpm", "ncurses-c++-libs-0:6.4-15.20240127.el10_1.aarch64.rpm", "ncurses-term-0:6.4-15.20240127.el10_1.noarch.rpm", "ncurses-libs-debuginfo-0:6.4-15.20240127.el10_1.x86_64.rpm", "ncurses-debuginfo-0:6.4-15.20240127.el10_1.aarch64.rpm", "ncurses-c++-libs-0:6.4-15.20240127.el10_1.s390x.rpm", "ncurses-debuginfo-0:6.4-15.20240127.el10_1.ppc64le.rpm", "ncurses-debugsource-0:6.4-15.20240127.el10_1.x86_64.rpm", "ncurses-0:6.4-15.20240127.el10_1.aarch64.rpm", "ncurses-libs-0:6.4-15.20240127.el10_1.ppc64le.rpm", "ncurses-libs-0:6.4-15.20240127.el10_1.s390x.rpm", "ncurses-c++-libs-debuginfo-0:6.4-15.20240127.el10_1.aarch64.rpm", "ncurses-devel-0:6.4-15.20240127.el10_1.aarch64.rpm", "ncurses-0:6.4-15.20240127.el10_1.ppc64le.rpm", "ncurses-c++-libs-debuginfo-0:6.4-15.20240127.el10_1.x86_64.rpm", "ncurses-debugsource-0:6.4-15.20240127.el10_1.aarch64.rpm", "ncurses-libs-0:6.4-15.20240127.el10_1.aarch64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. Moderate ncurses update for Rocky Linux addresses buffer overflow risk leading to arbitrary code execution. Stay secure!. ncurses security update, Rocky Linux buffer overflow, software vulnerability fix. . LinuxSecurity.com Team
Get the latest Linux and open source security news straight to your inbox.