openSUSE-SU-2020:0928-1

Опубликовано: 05 июл. 2020

Источник: suse-cvrf

Описание

Security update for chocolate-doom

This update for chocolate-doom to version 3.0.1 fixes the following issues:

CVE-2020-14983: Fixed a stack-based buffer overflow in the networking code (boo#1173595).

Список пакетов

openSUSE Leap 15.1

chocolate-doom-3.0.1-lp151.3.3.1

chocolate-doom-bash-completion-3.0.1-lp151.3.3.1

Ссылки

https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/AYBM53OFXOY7T3DKPPHK7ZW635BUSQES/
E-Mail link for openSUSE-SU-2020:0928-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1173595
SUSE Bug 1173595
https://www.suse.com/security/cve/CVE-2020-14983/
SUSE CVE CVE-2020-14983 page

Описание

The server in Chocolate Doom 3.0.0 and Crispy Doom 5.8.0 doesn't validate the user-controlled num_players value, leading to a buffer overflow. A malicious user can overwrite the server's stack.

Затронутые продукты

openSUSE Leap 15.1:chocolate-doom-3.0.1-lp151.3.3.1

openSUSE Leap 15.1:chocolate-doom-bash-completion-3.0.1-lp151.3.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2020-14983.html
CVE-2020-14983
https://bugzilla.suse.com/1173595
SUSE Bug 1173595

openSUSE-SU-2020:0928-1

Описание

Список пакетов

openSUSE Leap 15.1

Ссылки

Уязвимость: CVE-2020-14983

Описание

Затронутые продукты

Ссылки