PT-2019-12070 · Teeworlds+2 · Teeworlds+2

0N3M4Ns4Rmy

Published

2019-04-05

Updated

2019-08-24

CVE-2019-10877

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Teeworlds version 0.7.2

Description The issue is caused by an integer overflow in the CMap::Load() function, located in engine/shared/map.cpp. This overflow can lead to a buffer overflow due to the mishandling of the multiplication of width and height.

Recommendations For Teeworlds version 0.7.2, consider applying a patch or fix that correctly handles the multiplication of width and height in the CMap::Load() function to prevent the integer overflow and subsequent buffer overflow.

Fix

Integer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-190

Related Identifiers

ALT-PU-2019-1909

ALT-PU-2019-1934

CVE-2019-10877

OPENSUSE-SU-2019:1793-1

OPENSUSE-SU-2019:1999-1

OPENSUSE-SU-2019_1793-1

Affected Products

Alt Linux

Suse

Teeworlds

PT-2019-12070 · Teeworlds+2 · Teeworlds+2

CVE-2019-10877

Weakness Enumeration

Related Identifiers

Affected Products

References · 23