Better check data read from tetris.scores before use as array indices etc. - bsdgames-darwin

diff options

author	drochner <drochner@NetBSD.org>	2006-06-01 16:12:27 +0000
committer	drochner <drochner@NetBSD.org>	2006-06-01 16:12:27 +0000
commit	d8bc1d48404a4b9487e12764de024eb5e435c77a (patch)
tree	c7ae257f0d710a1e5944dbc9c3e289cd6b9eff90 /atc
parent	cc268dec31a1421ca85abfcbf593e18570d3e010 (diff)
download	bsdgames-darwin-d8bc1d48404a4b9487e12764de024eb5e435c77a.tar.gz bsdgames-darwin-d8bc1d48404a4b9487e12764de024eb5e435c77a.tar.zst bsdgames-darwin-d8bc1d48404a4b9487e12764de024eb5e435c77a.zip

Better check data read from tetris.scores before use as array indices etc.

This is CVE-2006-1539, files against Gentoo Linux, the patch is from Gentoo. A standard NetBSD installation is not as much risk because tetris is sgid "games", and users shouldn't be in that group.

Diffstat (limited to 'atc')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: