CVE-2007-4643

Name of the Vulnerable Software and Affected Versions: Doomsday versions 1.9.0-beta5.1 and earlier

Description: The issue is related to an integer underflow that allows remote attackers to cause a denial of service, resulting in a daemon crash. This can be triggered by a PKT CHAT packet with a data length less than 3, which leads to an erroneous malloc. The problem might be connected to the Sv HandlePacket function in sv main.c.

Recommendations: For Doomsday versions 1.9.0-beta5.1 and earlier, consider restricting or disabling the handling of PKT CHAT packets with short data lengths until a fix is available. As a temporary workaround, avoid using the Sv HandlePacket function in sv main.c for packets that could trigger the integer underflow. At the moment, there is no information about a newer version that contains a fix for this issue.