CVE-2019-15767

CVE-2019-15767 affects GNU Chess 6.2.5, with a stack-based buffer overflow in cmd_load (frontend/cmd.cc) triggered by a crafted EPD file in an external position. Connected sources (Mageia, Fedora/OpenVAS advisories, and OSV entries) confirm this vulnerability and document fixes in later gnuchess ...

CVE-2021-30184

GNU Chess 6.2.7 is affected by a buffer overflow when handling crafted PGN data, due to unsafe use of a .tmp.epd temporary file in frontend/cmd.cc (cmd_pgnload and cmd_pgnreplay). The vulnerability can allow arbitrary code execution with the privileges of the GNU Chess process. Public advisories ...

CVE-2015-8972

GNU Chess (gnuchess) is vulnerable to a stack-based buffer overflow in the ValidateMove function (frontend/move.cc) present in version 6.2.3 and earlier; a large input can allow context-dependent attackers to execute arbitrary code, notably when running in UCI mode. Public sources consistently st...

CVE-2002-0204

CVE-2002-0204 : Buffer overflow in GNU Chess (gnuchess) 5.02 and earlier. When modified or used in a networked capacity contrary to its single‑user design, it may allow local or remote attackers to execute arbitrary code via a long command. The vulnerability is described in the NVD entry; no fixe...