Linux Security
Linux Security
Linux Security

ArchLinux: 202103-26: godot: arbitrary code execution

Date 26 Mar 2021
57
Posted By LinuxSecurity Advisories
The package godot before version 3.2.3-2 is vulnerable to arbitrary code execution.
Arch Linux Security Advisory ASA-202103-26
==========================================

Severity: Medium
Date    : 2021-03-25
CVE-ID  : CVE-2021-26825 CVE-2021-26826
Package : godot
Type    : arbitrary code execution
Remote  : Yes
Link    : https://security.archlinux.org/AVG-1544

Summary
=======

The package godot before version 3.2.3-2 is vulnerable to arbitrary
code execution.

Resolution
==========

Upgrade to 3.2.3-2.

# pacman -Syu "godot>=3.2.3-2"

The problems have been fixed upstream but no release is available yet.

Workaround
==========

None.

Description
===========

- CVE-2021-26825 (arbitrary code execution)

An integer overflow issue exists in Godot Engine version 3.2.3 that can
be triggered when loading specially crafted TGA image files. The
vulnerability exists in the ImageLoaderTGA::load_image() function in
the line "const size_t buffer_size = (tga_header.image_width *
tga_header.image_height) * pixel_size;" The bug leads to a dynamic
stack buffer overflow. Depending on the context of the application, the
attack vector can be local or remote, and can lead to code execution
and/or a system crash.

- CVE-2021-26826 (arbitrary code execution)

A stack overflow issue exists in Godot Engine version 3.2.3 and is
caused by improper boundary checks when loading TGA image files.
Depending on the context of the application, the attack vector can be
local or remote, and can lead to code execution and/or a system crash.

Impact
======

A remote attacker who is able to supply a crafted TGA file to a client
which subsequently gets loaded by the engine is able to execute
arbitrary code on the affected host.

References
==========

https://bugs.archlinux.org/task/70057
https://github.com/godotengine/godot/pull/45702
https://github.com/godotengine/godot/commit/113b5ab1c45c01b8e6d54d13ac8876d091f883a8
https://security.archlinux.org/CVE-2021-26825
https://security.archlinux.org/CVE-2021-26826

Advisories

LinuxSecurity Poll

How frequently do you patch/update your system?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum 0 answer(s) and maximum 3 answer(s).
/main-polls/52-how-frequently-do-you-patch-update-your-system?task=poll.vote&format=json
52
radio
[{"id":"179","title":"As soon as patches\/updates are released - I track advisories for my distro(s) diligently","votes":"42","type":"x","order":"1","pct":84,"resources":[]},{"id":"180","title":"Every so often, when I think of it","votes":"4","type":"x","order":"2","pct":8,"resources":[]},{"id":"181","title":"Hardly ever","votes":"4","type":"x","order":"3","pct":8,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350

Please vote first in order to view vote results.

VOTE ON THE POLL PAGE


VIEW MORE POLLS

bottom 200

Please enable / Bitte aktiviere JavaScript!
Veuillez activer / Por favor activa el Javascript![ ? ]

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.