There is an illegal address access in the function _nc_read_entry_source() in progs/tic.c in ncurses 6.0 that might lead to a denial of service attack.
Created ncurses tracking bugs for this issue:
Affects: fedora-all [bug 1488923]
*** Bug 1484284 has been marked as a duplicate of this bug. ***