From 4f2d7949f03e1c198bc888f2d05f421d35c57e21 Mon Sep 17 00:00:00 2001 From: V3n3RiX Date: Mon, 9 Oct 2017 18:53:29 +0100 Subject: reinit the tree, so we can have metadata --- metadata/glsa/glsa-200605-12.xml | 84 ++++++++++++++++++++++++++++++++++++++++ 1 file changed, 84 insertions(+) create mode 100644 metadata/glsa/glsa-200605-12.xml (limited to 'metadata/glsa/glsa-200605-12.xml') diff --git a/metadata/glsa/glsa-200605-12.xml b/metadata/glsa/glsa-200605-12.xml new file mode 100644 index 000000000000..b8553ce99f9d --- /dev/null +++ b/metadata/glsa/glsa-200605-12.xml @@ -0,0 +1,84 @@ + + + + Quake 3 engine based games: Buffer Overflow + + The Quake 3 engine has a vulnerability that could be exploited to execute + arbitrary code. + + quake + 2006-05-10 + 2006-05-10: 01 + 132377 + remote + + + 1.32c + 1.32c + + + 1.41b + 1.41b + + + 2.60b + 2.60b + + + +

+ Quake 3 is a multiplayer first person shooter. +

+ + +

+ landser discovered a vulnerability within the "remapShader" + command. Due to a boundary handling error in "remapShader", there is a + possibility of a buffer overflow. +

+ + +

+ An attacker could set up a malicious game server and entice users + to connect to it, potentially resulting in the execution of arbitrary + code with the rights of the game user. +

+ + +

+ Do not connect to untrusted game servers. +

+ + +

+ All Quake 3 users should upgrade to the latest version: +

+ + # emerge --sync + # emerge --ask --oneshot --verbose ">=games-fps/quake3-bin-1.32c" +

+ All RTCW users should upgrade to the latest version: +

+ + # emerge --sync + # emerge --ask --oneshot --verbose ">=games-fps/rtcw-1.41b" +

+ All Enemy Territory users should upgrade to the latest version: +

+ + # emerge --sync + # emerge --ask --oneshot --verbose ">=games-fps/enemy-territory-2.60b" + + + CVE-2006-2236 + + + koon + + + koon + + + fox2mike + + -- cgit v1.2.3