21CTO

Sep 20, 2023 · Information Security

How ncurses Environment Variable Bugs Can Escalate Privileges on macOS and Linux

The recent discovery of CVE‑2023‑29491 reveals that the long‑standing ncurses library contains environment‑variable poisoning flaws that allow attackers to gain elevated privileges on macOS and Linux systems, prompting urgent updates and mitigation guidance.