NCurse v6.4-20230418 was discovered to contain a segmentation fault via the component _nc_wrap_entry(). https://lists.gnu.org/archive/html/bug-ncurses/2023-04/msg00020.html https://lists.gnu.org/archive/html/bug-ncurses/2023-04/msg00029.html
Created ncurses tracking bugs for this issue: Affects: fedora-all [bug 2254245]
This looks like it can only be triggered via "tic", which is used to process terminfo from source to compiled form, and the input is trusted. The practical impact is very limited - it is similar to gcc crashing - why has this been assigned a CVE name at all?