CVE-2025-69720

EUVD-2025-208879
The infocmp command-line tool in ncurses before 6.5-20251213 has a stack-based buffer overflow in analyze_string in progs/infocmp.c.
Classic Buffer Overflow
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.3 HIGH
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L
Base Score
CVSS 3.x
EPSS Score
Percentile: 1%
Affected Products (NVD)
VendorProductVersion
invisible-islandncurses
𝑥
≤ 6.4
invisible-islandncurses
6.5:20240427
invisible-islandncurses
6.5:20240504
invisible-islandncurses
6.5:20240511
invisible-islandncurses
6.5:20240518
invisible-islandncurses
6.5:20240519
invisible-islandncurses
6.5:20240525
invisible-islandncurses
6.5:20240601
invisible-islandncurses
6.5:20240608
invisible-islandncurses
6.5:20240615
invisible-islandncurses
6.5:20240622
invisible-islandncurses
6.5:20240629
invisible-islandncurses
6.5:20240706
invisible-islandncurses
6.5:20240713
invisible-islandncurses
6.5:20240720
invisible-islandncurses
6.5:20240727
invisible-islandncurses
6.5:20240810
invisible-islandncurses
6.5:20240817
invisible-islandncurses
6.5:20240824
invisible-islandncurses
6.5:20240831
invisible-islandncurses
6.5:20240914
invisible-islandncurses
6.5:20240922
invisible-islandncurses
6.5:20240928
invisible-islandncurses
6.5:20241006
invisible-islandncurses
6.5:20241019
invisible-islandncurses
6.5:20241026
invisible-islandncurses
6.5:20241102
invisible-islandncurses
6.5:20241109
invisible-islandncurses
6.5:20241123
invisible-islandncurses
6.5:20241130
invisible-islandncurses
6.5:20241207
invisible-islandncurses
6.5:20241214
invisible-islandncurses
6.5:20241221
invisible-islandncurses
6.5:20241228
invisible-islandncurses
6.5:20250104
invisible-islandncurses
6.5:20250111
invisible-islandncurses
6.5:20250118
invisible-islandncurses
6.5:20250125
invisible-islandncurses
6.5:20250201
invisible-islandncurses
6.5:20250208
invisible-islandncurses
6.5:20250215
invisible-islandncurses
6.5:20250216
invisible-islandncurses
6.5:20250222
invisible-islandncurses
6.5:20250301
invisible-islandncurses
6.5:20250308
invisible-islandncurses
6.5:20250315
invisible-islandncurses
6.5:20250322
invisible-islandncurses
6.5:20250329
invisible-islandncurses
6.5:20250405
invisible-islandncurses
6.5:20250412
invisible-islandncurses
6.5:20250419
invisible-islandncurses
6.5:20250426
invisible-islandncurses
6.5:20250503
invisible-islandncurses
6.5:20250510
invisible-islandncurses
6.5:20250517
invisible-islandncurses
6.5:20250524
invisible-islandncurses
6.5:20250531
invisible-islandncurses
6.5:20250614
invisible-islandncurses
6.5:20250621
invisible-islandncurses
6.5:20250628
invisible-islandncurses
6.5:20250705
invisible-islandncurses
6.5:20250712
invisible-islandncurses
6.5:20250720
invisible-islandncurses
6.5:20250726
invisible-islandncurses
6.5:20250802
invisible-islandncurses
6.5:20250809
invisible-islandncurses
6.5:20250816
invisible-islandncurses
6.5:20250823
invisible-islandncurses
6.5:20250830
invisible-islandncurses
6.5:20250913
invisible-islandncurses
6.5:20250920
invisible-islandncurses
6.5:20250927
invisible-islandncurses
6.5:20251004
invisible-islandncurses
6.5:20251010
invisible-islandncurses
6.5:20251018
invisible-islandncurses
6.5:20251025
invisible-islandncurses
6.5:20251101
invisible-islandncurses
6.5:20251115
invisible-islandncurses
6.5:20251122
invisible-islandncurses
6.5:20251123
invisible-islandncurses
6.5:20251129
invisible-islandncurses
6.5:20251206
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
ncurses
bookworm
no-dsa
bullseye
postponed
forky
6.6+20251231-1
fixed
sid
6.6+20251231-1
fixed
trixie
no-dsa
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
ncurses
bionic
needs-triage
focal
needs-triage
jammy
needs-triage
noble
needs-triage
questing
needs-triage
resolute
not-affected
trusty
needs-triage
xenial
needs-triage
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
libncurses5
suse enterprise sap 15 SP7
6.1-150000.5.33.1
fixed
suse enterprise server 15 SP4
6.1-150000.5.33.1
fixed
suse enterprise server 15 SP7
6.1-150000.5.33.1
fixed
libncurses5-32bit
suse enterprise sap 15 SP7
6.1-150000.5.33.1
fixed
suse enterprise server 15 SP4
6.1-150000.5.33.1
fixed
suse enterprise server 15 SP7
6.1-150000.5.33.1
fixed
libncurses6
suse enterprise desktop 15 SP7
6.1-150000.5.33.1
fixed
suse enterprise sap 15 SP7
6.1-150000.5.33.1
fixed
suse enterprise server 15 SP4
6.1-150000.5.33.1
fixed
suse enterprise server 15 SP7
6.1-150000.5.33.1
fixed
libncurses6-32bit
suse enterprise desktop 15 SP7
6.1-150000.5.33.1
fixed
suse enterprise sap 15 SP7
6.1-150000.5.33.1
fixed
suse enterprise server 15 SP4
6.1-150000.5.33.1
fixed
suse enterprise server 15 SP7
6.1-150000.5.33.1
fixed
ncurses-devel
suse enterprise desktop 15 SP7
6.1-150000.5.33.1
fixed
suse enterprise sap 15 SP7
6.1-150000.5.33.1
fixed
suse enterprise server 15 SP4
6.1-150000.5.33.1
fixed
suse enterprise server 15 SP7
6.1-150000.5.33.1
fixed
ncurses-devel-32bit
suse enterprise server 15 SP4
6.1-150000.5.33.1
fixed
ncurses-utils
suse enterprise desktop 15 SP7
6.1-150000.5.33.1
fixed
suse enterprise sap 15 SP7
6.1-150000.5.33.1
fixed
suse enterprise server 15 SP4
6.1-150000.5.33.1
fixed
suse enterprise server 15 SP7
6.1-150000.5.33.1
fixed
ncurses5-devel
suse enterprise sap 15 SP7
6.1-150000.5.33.1
fixed
suse enterprise server 15 SP4
6.1-150000.5.33.1
fixed
suse enterprise server 15 SP7
6.1-150000.5.33.1
fixed
tack
suse enterprise desktop 15 SP7
6.1-150000.5.33.1
fixed
suse enterprise sap 15 SP7
6.1-150000.5.33.1
fixed
suse enterprise server 15 SP4
6.1-150000.5.33.1
fixed
suse enterprise server 15 SP7
6.1-150000.5.33.1
fixed
terminfo
suse enterprise desktop 15 SP7
6.1-150000.5.33.1
fixed
suse enterprise sap 15 SP7
6.1-150000.5.33.1
fixed
suse enterprise server 15 SP4
6.1-150000.5.33.1
fixed
suse enterprise server 15 SP7
6.1-150000.5.33.1
fixed
terminfo-base
suse enterprise desktop 15 SP7
6.1-150000.5.33.1
fixed
suse enterprise sap 15 SP7
6.1-150000.5.33.1
fixed
suse enterprise server 15 SP4
6.1-150000.5.33.1
fixed
suse enterprise server 15 SP7
6.1-150000.5.33.1
fixed
terminfo-iterm
suse enterprise desktop 15 SP7
6.1-150000.5.33.1
fixed
suse enterprise sap 15 SP7
6.1-150000.5.33.1
fixed
suse enterprise server 15 SP4
6.1-150000.5.33.1
fixed
suse enterprise server 15 SP7
6.1-150000.5.33.1
fixed
terminfo-screen
suse enterprise desktop 15 SP7
6.1-150000.5.33.1
fixed
suse enterprise sap 15 SP7
6.1-150000.5.33.1
fixed
suse enterprise server 15 SP4
6.1-150000.5.33.1
fixed
suse enterprise server 15 SP7
6.1-150000.5.33.1
fixed
Common Weakness Enumeration
References
https://github.com/Cao-Wuhui/CVE-2025-69720
https://invisible-island.net/archives/ncurses/6.5/
https://invisible-island.net/ncurses/
https://marc.info/?l=ncurses-bug&m=176539968328570&w=2
https://marc.info/?l=ncurses-bug&m=176540731801330&w=2
https://marc.info/?l=ncurses-bug&m=176545557728083&w=2