In ncurses 6.1, there is a NULL pointer dereference at function _nc_parse_entry in parse_entry.c that will lead to a denial of service attack. References: https://bugzilla.redhat.com/show_bug.cgi?id=1643754
Created ncurses tracking bugs for this issue: Affects: fedora-all [bug 1652602]
Given that it does not seem easily reproducible and could very well be a crash due to crafted input values, it is more appropriate to wontfix this.