[Pkg-games-ubuntu] [Bug 1486946] Re: Server security vulnerability
Steve Beattie
sbeattie at ubuntu.com
Thu Aug 20 20:20:05 UTC 2015
Thanks for taking the time to report this bug and helping to make Ubuntu
better. Since the package referred to in this bug is in universe or
multiverse, it is community maintained. If you are able, I suggest
coordinating with upstream and posting a debdiff for this issue. When a
debdiff is available, members of the security team will review it and
publish the package. See the following link for more information:
https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures
** Changed in: teeworlds (Ubuntu)
Status: New => Incomplete
--
You received this bug notification because you are a member of
Debian/Ubuntu Games Team, which is subscribed to teeworlds in Ubuntu.
https://bugs.launchpad.net/bugs/1486946
Title:
Server security vulnerability
Status in teeworlds package in Ubuntu:
Incomplete
Status in teeworlds package in Debian:
Fix Released
Bug description:
Teeworlds 0.6.3 released a security fix for an exploitable server bug ("Memory reads, Segmentation Fault"): https://www.teeworlds.com/?page=news&id=11200
Debian has already backported the fix to 0.6.2: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=770514
This fix (affecting teeworlds-server) is already included in vivid and wily, but should be backported to older but still supported Ubuntu releases.
Teeworlds 0.6.3 also fixed a bug in the client, which seems not to
have been included in the current Debian release: "Fix client crash
when opening a map with an invalid version"
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/teeworlds/+bug/1486946/+subscriptions
More information about the Pkg-games-ubuntu
mailing list