thr3ads.net - Secure testing team - [Secure-testing-team] Bug#617960: widelands: potential security issue in internet games [Mar 2011]

If this information is useful, please help other people find it:
Share via:

Twitter
Facebook
Email

Ansgar Burchardt

2011-Mar-12 21:23 UTC

[Secure-testing-team] Bug#617960: widelands: potential security issue in internet games

Package: widelands
Version: 1:15-2
Severity: grave
Tags: security upstream
Justification: user security hole

Hi,

there is a fix[1] for a potential security issue in internet games
available upstream.  It looks like this might allow overwriting
arbitrary files as the user, but I have not done any verification.

Regards,
Ansgar

[1]
<http://bazaar.launchpad.net/~widelands-dev/widelands/build-15/revision/5021>

Secure testing team - Mar 2011 - Bug#617960: widelands: potential security issue in internet games

[Secure-testing-team] Bug#617960: widelands: potential security issue in internet games