4 matches found
CVE-2020-6016
CVE-2020-6016 affects Valve’s Game Networking Sockets (GNS/Steam Sockets) prior to v1.2.0. The root cause is improper handling of unreliable segments with negative offsets in SNP_ReceiveUnreliableSegment(), causing a heap-based buffer underflow, memory corruption, and a probable remote code execu...
CVE-2020-6018
CVE-2020-6018 affects Valve's Game Networking Sockets
CVE-2020-6017
Valve’s Game Networking Sockets (Steam Sockets) prior to v1.2.0 is affected by CVE-2020-6017 due to SNP_ReceiveUnreliableSegment() mishandling long unreliable segments when plain-text messages are enabled, causing a heap-based buffer overflow that can lead to memory corruption and potential remot...
CVE-2020-6019
Valve's Game Networking Sockets/Steam Sockets before v1.2.0 contains a vulnerability in CConnectionTransportUDPBase::Received_Data() where inlined statistics messages trigger a libprotobuf exception, causing a crash. Affected component appears in both Steam server and client code paths per multip...