CVE-2020-14983
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2020-14983
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-14983.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2020-14983
- Related
- Published
- 2020-06-22T20:15:11Z
- Modified
- 2024-10-12T06:10:12.844758Z
- Severity
-
- 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
The server in Chocolate Doom 3.0.0 and Crispy Doom 5.8.0 doesn't validate the user-controlled num_players value, leading to a buffer overflow. A malicious user can overwrite the server's stack.
- References
-
- http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00002.html
- http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00007.html
- http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00012.html
- https://github.com/chocolate-doom/chocolate-doom/issues/1293
- https://security-tracker.debian.org/tracker/CVE-2020-14983
Affected packages
Debian:11 / chocolate-doom
Package
- Name
- chocolate-doom
- Purl
- pkg:deb/debian/chocolate-doom?arch=source
Debian:12 / chocolate-doom
Package
- Name
- chocolate-doom
- Purl
- pkg:deb/debian/chocolate-doom?arch=source
Debian:13 / chocolate-doom
Package
- Name
- chocolate-doom
- Purl
- pkg:deb/debian/chocolate-doom?arch=source
Debian:11 / crispy-doom
Package
- Name
- crispy-doom
- Purl
- pkg:deb/debian/crispy-doom?arch=source
Debian:12 / crispy-doom
Package
- Name
- crispy-doom
- Purl
- pkg:deb/debian/crispy-doom?arch=source
Debian:13 / crispy-doom
Package
- Name
- crispy-doom
- Purl
- pkg:deb/debian/crispy-doom?arch=source
Git / github.com/chocolate-doom/chocolate-doom
Affected ranges
- Type
- GIT
- Repo
- https://github.com/chocolate-doom/chocolate-doom
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Type
- GIT
- Repo
- https://github.com/fabiangreffrath/crispy-doom
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected
Affected versions
chocolate-doom-0.*
chocolate-doom-0.0.1
chocolate-doom-0.0.2
chocolate-doom-0.0.3
chocolate-doom-0.0.4
chocolate-doom-0.1.0
chocolate-doom-0.1.1
chocolate-doom-0.1.2
chocolate-doom-1.*
chocolate-doom-1.0.0
chocolate-doom-1.1.0
chocolate-doom-1.1.1
chocolate-doom-1.2.0
chocolate-doom-1.2.1
chocolate-doom-1.3.0
chocolate-doom-1.4.0
chocolate-doom-1.5.0
chocolate-doom-1.6.0
chocolate-doom-1.7.0
chocolate-doom-2.*
chocolate-doom-2.0.0
chocolate-doom-2.0.0-beta1
chocolate-doom-2.0.0-beta2
chocolate-doom-2.0.0-beta3
chocolate-doom-2.1.0
chocolate-doom-2.2.0
chocolate-doom-2.3.0
chocolate-doom-3.*
chocolate-doom-3.0.0
chocolate-doom-3.0.0-beta1
Other
chocolate-strife-beta1
chocolate-strife-beta2
doom-src-release
netalpha1
netalpha2
netalpha3
netalpha4
netalpha5
raven-src-release
crispy-doom-1.*
crispy-doom-1.0
crispy-doom-1.1
crispy-doom-1.1-beta1
crispy-doom-1.1-beta2
crispy-doom-1.2
crispy-doom-1.3
crispy-doom-1.3-beta1
crispy-doom-1.4
crispy-doom-1.5
crispy-doom-2.*
crispy-doom-2.0
crispy-doom-2.1
crispy-doom-2.2
crispy-doom-2.3
crispy-doom-3.*
crispy-doom-3.0
crispy-doom-3.1
crispy-doom-3.2
crispy-doom-3.3
crispy-doom-3.4
crispy-doom-3.5
crispy-doom-4.*
crispy-doom-4.0
crispy-doom-4.1
crispy-doom-4.2
crispy-doom-4.3
crispy-doom-5.*
crispy-doom-5.0
crispy-doom-5.1
crispy-doom-5.2
crispy-doom-5.3
crispy-doom-5.4
crispy-doom-5.5
crispy-doom-5.5.1
crispy-doom-5.5.2
crispy-doom-5.6
crispy-doom-5.6.1
crispy-doom-5.6.2
crispy-doom-5.6.3
crispy-doom-5.6.4
crispy-doom-5.7
crispy-doom-5.7.1
crispy-doom-5.7.2
crispy-doom-5.8.0