Impact
Malicious use of escaping of characters in the configuration file (usually .nethackrc) can be exploited.
Patches
This bug was patched in NetHack 3.6.0 commit 612755b; as 3.4.3 is no longer supported this CVE is informational only for NetHack but may be of concern to NetHack variants that are still based on the 3.4.3 code.
Workarounds
None.
References
Additional information, if any, will be made available at https://nethack.org/security.
For more information
If you have any questions or comments about this advisory:
Impact
Malicious use of escaping of characters in the configuration file (usually .nethackrc) can be exploited.
Patches
This bug was patched in NetHack 3.6.0 commit 612755b; as 3.4.3 is no longer supported this CVE is informational only for NetHack but may be of concern to NetHack variants that are still based on the 3.4.3 code.
Workarounds
None.
References
Additional information, if any, will be made available at https://nethack.org/security.
For more information
If you have any questions or comments about this advisory: