File _patchinfo of Package patchinfo.10967

<patchinfo incident="10967">
  <issue tracker="bnc" id="1131830">VUL-1: CVE-2018-10754: ncurses: There is a Segmentation fault in the software in _nc_parse_entry function of ncurses tool with latest version</issue>
  <issue id="1134550" tracker="bnc">ppc64-diag.ppc64le fails on nothing provides pkgconfig(ncurses)</issue>
  <issue id="1154036" tracker="bnc">VUL-0: CVE-2019-17594: ncurses: heap-based buffer over-read in _nc_find_entry function in tinfo/comp_hash.c</issue>
  <issue id="1154037" tracker="bnc">VUL-0: CVE-2019-17595: ncurses: heap-based buffer over-read in fmt_entry function in tinfo/comp_hash.c</issue>
  <issue id="2019-17594" tracker="cve" />
  <issue id="2019-17595" tracker="cve" />
  <issue tracker="cve" id="2018-10754"/>
  <packager>WernerFink</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for ncurses</summary>
  <description>This update for ncurses fixes the following issues:

Security issue fixed:

- CVE-2018-10754: Fixed a denial of service caused by a NULL Pointer Dereference in the _nc_parse_entry() (bsc#1131830).
- CVE-2019-17594: Fixed a heap-based buffer over-read in _nc_find_entry function in tinfo/comp_hash.c (bsc#1154036).
- CVE-2019-17595: Fixed a heap-based buffer over-read in fmt_entry function in tinfo/comp_hash.c (bsc#1154037).

Bug fixes:

- Fixed ppc64le build configuration (bsc#1134550).
</description>
</patchinfo>