First published: Tue Oct 09 2007(Updated: )
Description of problem: From Novell bugzilla (see URL): A malicious user could send a long chat message with multibyte characters, the server would truncate the message on a fixed length, without paying attention to the multibyte characters. This led to invalid utf-8 on the client and an uncaught exception was thrown. Note both wesnoth and the wesnoth server are affected. Additional information: I am aware of no further details, nor the fix.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Wesnoth Wesnoth | =1.2.4 | |
Wesnoth Wesnoth | =1.3.6 | |
Wesnoth Wesnoth | =1.2.2 | |
Wesnoth Wesnoth | =1.3.1 | |
Wesnoth Wesnoth | =1.3.2 | |
Wesnoth Wesnoth | =1.2.1 | |
Wesnoth Wesnoth | =1.3.5 | |
Wesnoth Wesnoth | =1.3.3 | |
Wesnoth Wesnoth | =1.2.5 | |
Wesnoth Wesnoth | =1.3.4 | |
Wesnoth Wesnoth | =1.2.3 | |
Wesnoth Wesnoth | =1.2.6 | |
Wesnoth Wesnoth | =1.2 | |
Wesnoth Wesnoth | =1.3.7 | |
Wesnoth Wesnoth | =1.3.8 | |
redhat/1.2.7 | <1. | 1. |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.