Lucene search

K
osvGoogleOSV:DSA-949-1
HistoryJan 20, 2006 - 12:00 a.m.

crawl - insecure program execution

2006-01-2000:00:00
Google
osv.dev
4

Steve Kemp from the Debian Security Audit project discovered a
security related problem in crawl, another console based dungeon
exploration game in the vein of nethack and rogue. The program
executes commands insecurely when saving or loading games which can
allow local attackers to gain group games privileges.

For the old stable distribution (woody) this problem has been fixed in
version 4.0.0beta23-2woody2.

For the stable distribution (sarge) this problem has been fixed in
version 4.0.0beta26-4sarge0.

For the unstable distribution (sid) this problem has been fixed in
version 4.0.0beta26-7.

We recommend that you upgrade your crawl package.

CPENameOperatorVersion
crawleq1:4.0.0beta26-4