Impact
Extremely long value for the MENUCOLOR configuration file option can cause a buffer overflow resulting in a crash or remote code execution/privilege escalation.
Applies to
This vulnerability affects systems that have NetHack installed suid/sgid and shared systems that allow users to upload their own configuration files.
Patches
Users should upgrade to NetHack 3.6.5.
Workarounds
None.
References
Additional information, if any, will be made available at https://nethack.org/security.
Impact
Extremely long value for the MENUCOLOR configuration file option can cause a buffer overflow resulting in a crash or remote code execution/privilege escalation.
Applies to
This vulnerability affects systems that have NetHack installed suid/sgid and shared systems that allow users to upload their own configuration files.
Patches
Users should upgrade to NetHack 3.6.5.
Workarounds
None.
References
Additional information, if any, will be made available at https://nethack.org/security.