EUVD-2022-29756

Malicious code in bioql PyPI...

CVE-2022-25010

The component /rootfs in RageFile of Stepmania v5.1b2 and below allows attackers access to the entire file system...

CVE-2020-20412

lib/codebook.c in libvorbis before 1.3.6, as used in StepMania 5.0.12 and other products, has insufficient array bounds checking via a crafted OGG file. NOTE: this may overlap CVE-2018-5146...

SUSE CVE-2020-20412

lib/codebook.c in libvorbis before 1.3.6, as used in StepMania 5.0.12 and other products, has insufficient array bounds checking via a crafted OGG file. NOTE: this may overlap CVE-2018-5146...

Stepmania Elevation of Privilege Vulnerability

Stepmania is a game from the Stepmania team available for Windows, Linux and OS X. Stepmania is vulnerable to an elevation of privilege vulnerability that stems from a lack of privilege restrictions in the rootfs component of RageFile, which could be exploited to access the entire file system...

CVE-2022-25010

The component /rootfs in RageFile of Stepmania v5.1b2 and below allows attackers access to the entire file system...

CVE-2022-25010

The component /rootfs in RageFile of Stepmania v5.1b2 and below allows attackers access to the entire file system...

CVE-2022-25010

The component /rootfs in RageFile of Stepmania v5.1b2 and below allows attackers access to the entire file system...

Design/Logic Flaw

The component /rootfs in RageFile of Stepmania v5.1b2 and below allows attackers access to the entire file system...

CVE-2022-25010

CVE-2022-25010 affects Stepmania v5.1b2 and earlier, where the /rootfs component in RageFile can be exploited to access the entire file system. Affected software: Stepmania; vulnerable component: RageFile’s /rootfs. Root cause described across sources as lack of privilege restrictions enabling el...

CVE-2022-25010

The component /rootfs in RageFile of Stepmania v5.1b2 and below allows attackers access to the entire file system...

Stepmania 安全漏洞

Stepmania is a game from the Stepmania team available for Windows, Linux and OS X. Stepmania is vulnerable to an elevation of privilege vulnerability that stems from a lack of privilege restrictions in the rootfs component of RageFile, which could be exploited to access the entire file system...

PT-2022-17044 · Stepmania · Stepmania

Name of the Vulnerable Software and Affected Versions: Stepmania versions 5.1b2 and below Description: The issue allows attackers to access the entire file system through the /rootfs component in RageFile. Recommendations: For Stepmania versions 5.1b2 and below, consider restricting access to the...

Advisory ROSA-SA-2021-1901

Software: libvorbis 1.3.3 OS: Cobalt 7.9 CVE-ID: CVE-2020-20412 CVE-Crit: MEDIUM CVE-DESC: lib / codebook.c in libvorbis before 1.3.6, which was used in StepMania 5.0.12 and other products, has insufficient array bounds checking with the created OGG file. CVE-STATUS: default CVE-REV: default...

CVE-2020-20412

lib/codebook.c in libvorbis before 1.3.6, as used in StepMania 5.0.12 and other products, has insufficient array bounds checking via a crafted OGG file. NOTE: this may overlap CVE-2018-5146...

CVE-2020-20412

lib/codebook.c in libvorbis before 1.3.6, as used in StepMania 5.0.12 and other products, has insufficient array bounds checking via a crafted OGG file. NOTE: this may overlap CVE-2018-5146...

Design/Logic Flaw

lib/codebook.c in libvorbis before 1.3.6, as used in StepMania 5.0.12 and other products, has insufficient array bounds checking via a crafted OGG file. NOTE: this may overlap CVE-2018-5146...

PT-2020-15266 · Stepmania Team +2 · Stepmania +2

Name of the Vulnerable Software and Affected Versions: libvorbis versions prior to 1.3.6 StepMania version 5.0.12 Description: The issue is related to insufficient array bounds checking in libvorbis, which can be exploited via a crafted OGG file. This affects products using libvorbis, including...