In ncurses 6.0, there is a NULL Pointer Dereference in the _nc_parse_entry function of tinfo/parse_entry.c. It could lead to a remote denial of service attack if the terminfo library code is used to process untrusted terminfo data. Bug report: https://bugzilla.redhat.com/show_bug.cgi?id=1464691 Upstream patch: https://lists.gnu.org/archive/html/bug-ncurses/2017-07/msg00001.html
*** Bug 1464691 has been marked as a duplicate of this bug. ***