Lucene search
GoogleOSV:DSA-432HistoryFeb 03, 2004 - 12:00 a.m.
crawl - buffer overflow
2004-02-0300:00:00
Google
osv.dev
6
0.0004 Low
EPSS
Percentile
5.1%
Steve Kemp from the Debian Security Audit Project discovered a problem in
crawl, another console based dungeon exploration game, in the vein of
nethack and rogue. The program uses several environment variables as
inputs but doesn’t apply a size check before copying one of them into
a fixed size buffer.
For the stable distribution (woody) this problem has been fixed in
version 4.0.0beta23-2woody1.
For the unstable distribution (sid) this problem has been fixed in
version 4.0.0beta26-4.
We recommend that you upgrade your crawl package.
References
Related
debiancve
debiancve
CVE-2004-0103
2004-03-03 05:00:00
openvas
openvas
Debian Security Advisory DSA 432-1 (crawl)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-432)
2008-01-17 00:00:00
debian
debian
[SECURITY] [DSA 432-1] New crawl packages fix potential local games exploit
2004-02-03 16:03:01
[SECURITY] [DSA 432-1] New crawl packages fix potential local games exploit
2004-02-03 16:03:01
nessus
nessus
Debian DSA-432-1 : crawl - buffer overflow
2004-09-29 00:00:00
cvelist
cvelist
CVE-2004-0103
2004-02-11 05:00:00
nvd
nvd
CVE-2004-0103
2004-03-03 05:00:00
cve
cve
CVE-2004-0103
2004-03-03 05:00:00