This script is Copyright (C) 2017 Tenable Network Security, Inc.
The remote openSUSE host is missing a security update.
This update for ncurses fixes the following issues :
Security issues fixed :
- CVE-2017-10684: Possible RCE via stack-based buffer
overflow in the fmt_entry function. (bsc#1046858)
- CVE-2017-10685: Possible RCE with format string
vulnerability in the fmt_entry function. (bsc#1046853)
- Drop patch ncurses-5.9-environment.dif as YaST2 ncurses
GUI does not need it anymore and as well as it causes
This update was imported from the SUSE:SLE-12:Update update project.
See also :
Update the affected ncurses packages.
Risk factor :
High / CVSS Base Score : 7.5