Errata overview
Errata ID 60
Date 2018-05-16
Source package ncurses
Fixed in version 6.0+20161126-1+deb9u2
This update addresses the following issue(s):
* Stack-based buffer overflow in the _nc_write_entry function in
  tinfo/write_entry.c allows attackers to cause a denial of service
  (application crash) or possibly execute arbitrary code via a crafted
  terminfo file, as demonstrated by tic. (CVE-2017-16879)
Additional notes
CVE ID CVE-2017-16879
UCS Bug number #46618