Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 486
Alerts This Week
Warning Icon 1 486

Gentoo: GLSA-200603-10 Critical: Cube Buffer Overflow Risk

gentoo
Calendar Grey March 13, 2006
Dist Gentoo Esm H88
Critical security notice for Cube on Gentoo Linux highlighting significant buffer overflow vulnerabilities and unauthorized memory access risks.
Cube is vulnerable to a buffer overflow, invalid memory access and remote client crashes, possibly leading to a Denial of Service or remote code execution

Summary

Gentoo Linux Security Advisory GLSA 200603-10 https://security.gentoo.org/ Severity: High Title: Cube: Multiple vulnerabilities Date: March 13, 2006 Bugs: #125289 ID: 200603-10

Synopsis ======= Cube is vulnerable to a buffer overflow, invalid memory access and remote client crashes, possibly leading to a Denial of Service or remote code execution.
Background ========= Cube is an open source first person shooter game engine supporting multiplayer via LAN or internet.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 games-fps/cube <= 20050829 Vulnerable! ------------------------------------------------------------------- NOTE: Certain packages are still vulnerable. Users should migrate to another package if one is available or wait for the existing packages to be marked stable by their architecture maintainers.
========== Luigi Auriemma reported that Cube is vulnerable to a buffer overflow in the sgetstr() function (CVE-2006-1100) and that the sgetstr() and getin...

Read the Full Advisory

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround