DevGuard Logo

🛡️ DevGuard
Group
/🧩 DevGuard Action
Repository

Overview
Compliance
Artifacts
Code Risks
Dependency Risks
License Risks
Dependencies

CVE-2025-6141

A vulnerability has been found in GNU ncurses up to 6.5-20250322 and classified as problematic. This vulnerability affects the function postprocess_termcap of the file tinfo/parse_entry.c. The manipulation leads to stack-based buffer overflow. The attack needs to be approached locally. Upgrading to version 6.5-20250329 is able to address this issue. It is recommended to upgrade the affected component.

Open
LOW (0.6)
  • logo

    System detected CVE-2025-6141 with a risk of 1.2

    attesting
  • S

    Sebastian Kawelke updated the risk assessment from 1.2 to 1.85

    attesting

    Confidentiality Requirement updated: high -> low, Availability Requirement updated: low -> high

  • logo

    System updated the risk assessment from 1.85 to 0.55

    attesting

    System recalculated raw risk assessment

  • logo

    System fixed CVE-2025-6141

    attesting
  • logo

    System detected CVE-2025-6141 with a risk of 0.55

    attesting

Add a comment

Mark as False Positive
Last calculated at:

Affected component

debian/ncurses

Installed version:
6.4
Fixed in:
no patch available
Show in dependency graph

Management decisions across the organization

GitHubImprintTerms of UsePrivacy
Copyright © 2025 L3montree GmbH and the DevGuard Contributors. All rights reserved. Version 2ab7b793efd72421aea8c3a994ac60202bf1b3a5