CVE-2003-0454

Name of the Vulnerable Software and Affected Versions xgalaga versions 2.0.34 and earlier

Description The issue concerns multiple vulnerabilities in the xgalaga package of the Debian GNU/Linux operating system, which can be exploited by a local attacker to compromise the confidentiality, integrity, and availability of protected information. A key aspect of this issue is the presence of multiple buffer overflows, specifically in versions 2.0.34 and earlier, which can be triggered by a local user setting a long HOME environment variable.

Recommendations For xgalaga versions 2.0.34 and earlier, consider restricting access to the HOME environment variable to prevent exploitation of the buffer overflow vulnerability until a patch is available. As a temporary workaround, avoid using long values for the HOME environment variable in affected versions of xgalaga.