CVE-2022-39047

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Freeciv versions prior to 2.6.7 Freeciv versions prior to 3.0.3

Description The issue is related to a buffer overflow vulnerability in the Modpack Installer utility's handling of the modpack URL. This vulnerability can be exploited due to improper handling of the URL, leading to a buffer overflow.

Recommendations For versions prior to 2.6.7, update to version 2.6.7 or later to resolve the issue. For versions prior to 3.0.3, update to version 3.0.3 or later to resolve the issue. As a temporary workaround, consider restricting the use of the Modpack Installer utility until a patch is available.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-120

Related Identifiers

CVE-2022-39047

MGASA-2022-0293

Affected Products

Debian

Freeciv

CVE-2022-39047

Weakness Enumeration

Related Identifiers

Affected Products

References · 20