Описание
Dungeon Crawl Stone Soup (aka DCSS or crawl) before 0.25 allows remote attackers to execute arbitrary code via Lua bytecode embedded in an uploaded .crawlrc file.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needs-triage |
| devel | not-affected | 2:0.25.0-1 |
| eoan | ignored | end of life |
| esm-apps/bionic | released | 2:0.21.1-1ubuntu0.1~esm1 |
| esm-apps/focal | released | 2:0.24.0-1ubuntu0.1~esm1 |
| esm-apps/jammy | not-affected | 2:0.25.0-1 |
| esm-apps/noble | not-affected | 2:0.25.0-1 |
| esm-apps/xenial | released | 2:0.17.1-1ubuntu0.1~esm1 |
| esm-infra-legacy/trusty | DNE | |
| focal | ignored | end of standard support, was needs-triage |
Показывать по
10
Ссылки на источники
7.5 High
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
CVSS3: 9.8
nvd
почти 6 лет назад
Dungeon Crawl Stone Soup (aka DCSS or crawl) before 0.25 allows remote attackers to execute arbitrary code via Lua bytecode embedded in an uploaded .crawlrc file.
CVSS3: 9.8
debian
почти 6 лет назад
Dungeon Crawl Stone Soup (aka DCSS or crawl) before 0.25 allows remote ...
github
больше 3 лет назад
Dungeon Crawl Stone Soup (aka DCSS or crawl) before 0.25 allows remote attackers to execute arbitrary code via Lua bytecode embedded in an uploaded .crawlrc file.
7.5 High
CVSS2
9.8 Critical
CVSS3