Bug#857699: ioquake3 has a security vulnerability
Daniel Gibson
metalcaedes at gmail.com
Tue Mar 14 03:59:15 UTC 2017
Package: ioquake3
Version: 1.36
Severity: grave
Hi,
earlier today ioquake3 fixed a vulnerability that, as far as I
understand, could let malicious multiplayer servers execute code on
connecting clients.
It affects all prior versions of ioquake3 (and I think also original
Quake 3).
Details:
https://ioquake3.org/2017/03/13/important-security-update-please-update-ioquake3-immediately/
So you should probably update to latest ioq3 git or backport the fix.
Cheers,
Daniel
More information about the Pkg-games-devel
mailing list