CVE-2009-0878

The read_game_map function in src/terrain_translation.cpp in Wesnoth before r32987 allows remote attackers to cause a denial of service (memory consumption and daemon hang) via a map with a large (1) width or (2) height.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 78%
VendorProductVersion
wesnothwesnoth
𝑥
≤ 1.4.7
wesnothwesnoth
0.2.1
wesnothwesnoth
0.3
wesnothwesnoth
0.3.1
wesnothwesnoth
0.3.2
wesnothwesnoth
0.3.3
wesnothwesnoth
0.3.4
wesnothwesnoth
0.4
wesnothwesnoth
0.4.1
wesnothwesnoth
0.4.2
wesnothwesnoth
0.4.3
wesnothwesnoth
0.4.4
wesnothwesnoth
0.4.5
wesnothwesnoth
0.4.6
wesnothwesnoth
0.4.7
wesnothwesnoth
0.4.8
wesnothwesnoth
0.5
wesnothwesnoth
0.5.1
wesnothwesnoth
0.6
wesnothwesnoth
0.6.1
wesnothwesnoth
0.6.99.1
wesnothwesnoth
0.6.99.2
wesnothwesnoth
0.6.99.3
wesnothwesnoth
0.6.99.4
wesnothwesnoth
0.6.99.5
wesnothwesnoth
0.7
wesnothwesnoth
0.7.1
wesnothwesnoth
0.7.2
wesnothwesnoth
0.7.3
wesnothwesnoth
0.7.4
wesnothwesnoth
0.7.5
wesnothwesnoth
0.7.6
wesnothwesnoth
0.7.7
wesnothwesnoth
0.7.8
wesnothwesnoth
0.7.9
wesnothwesnoth
0.7.10
wesnothwesnoth
0.7.11
wesnothwesnoth
0.8
wesnothwesnoth
0.8.1
wesnothwesnoth
0.8.2
wesnothwesnoth
0.8.3
wesnothwesnoth
0.8.4
wesnothwesnoth
0.8.5
wesnothwesnoth
0.8.6
wesnothwesnoth
0.8.7
wesnothwesnoth
0.8.8
wesnothwesnoth
0.8.9
wesnothwesnoth
0.8.10
wesnothwesnoth
0.8.11
wesnothwesnoth
0.9.0
wesnothwesnoth
0.9.1
wesnothwesnoth
0.9.2
wesnothwesnoth
0.9.3
wesnothwesnoth
0.9.4
wesnothwesnoth
0.9.5
wesnothwesnoth
0.9.6
wesnothwesnoth
0.9.7
wesnothwesnoth
1.0:rc
wesnothwesnoth
1.0rcl:rcl
wesnothwesnoth
1.1
wesnothwesnoth
1.1.1
wesnothwesnoth
1.1.2
wesnothwesnoth
1.1.3
wesnothwesnoth
1.1.4
wesnothwesnoth
1.1.5
wesnothwesnoth
1.1.6
wesnothwesnoth
1.1.7
wesnothwesnoth
1.1.8
wesnothwesnoth
1.1.9
wesnothwesnoth
1.1.10
wesnothwesnoth
1.1.11
wesnothwesnoth
1.1.12
wesnothwesnoth
1.1.13
wesnothwesnoth
1.1.14
wesnothwesnoth
1.2
wesnothwesnoth
1.2.1
wesnothwesnoth
1.2.2
wesnothwesnoth
1.2.3
wesnothwesnoth
1.2.4
wesnothwesnoth
1.2.5
wesnothwesnoth
1.2.6
wesnothwesnoth
1.2.7
wesnothwesnoth
1.2.8
wesnothwesnoth
1.3.1
wesnothwesnoth
1.3.2
wesnothwesnoth
1.3.3
wesnothwesnoth
1.3.4
wesnothwesnoth
1.3.5
wesnothwesnoth
1.3.6
wesnothwesnoth
1.3.7
wesnothwesnoth
1.3.8
wesnothwesnoth
1.3.9
wesnothwesnoth
1.3.10
wesnothwesnoth
1.3.11
wesnothwesnoth
1.3.12
wesnothwesnoth
1.3.13
wesnothwesnoth
1.3.14
wesnothwesnoth
1.3.15
wesnothwesnoth
1.3.16
wesnothwesnoth
1.3.17
wesnothwesnoth
1.3.18
wesnothwesnoth
1.3.19
wesnothwesnoth
1.4
wesnothwesnoth
1.4.1
wesnothwesnoth
1.4.2
wesnothwesnoth
1.4.3
wesnothwesnoth
1.4.4
wesnothwesnoth
1.4.5
wesnothwesnoth
1.4.6
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
wesnoth
karmic
Fixed 1:1.4.7-4
released
jaunty
Fixed 1:1.4.7-4
released
intrepid
Fixed 1:1.4.5-1ubuntu0.2
released
hardy
Fixed 1:1.4-1ubuntu0.1
released
gutsy
ignored
dapper
ignored
Common Weakness Enumeration
References
http://launchpad.net/bugs/335089
http://launchpad.net/bugs/336396
http://packages.debian.org/changelogs/pool/main/w/wesnoth/wesnoth_1.4.7-4/changelog
http://packages.debian.org/changelogs/pool/main/w/wesnoth/wesnoth_1.5.12-1/changelog
http://svn.gna.org/viewcvs/wesnoth/trunk/src/terrain_translation.cpp?r2=32987&rev=32987&r1=31859&dir_pagestart=200
http://svn.gna.org/viewcvs/wesnoth/trunk/src/terrain_translation.cpp?rev=33078&dir_pagestart=200&view=log
https://exchange.xforce.ibmcloud.com/vulnerabilities/49294
https://gna.org/bugs/index.php?13031
http://launchpad.net/bugs/335089
http://launchpad.net/bugs/336396
http://packages.debian.org/changelogs/pool/main/w/wesnoth/wesnoth_1.4.7-4/changelog
http://packages.debian.org/changelogs/pool/main/w/wesnoth/wesnoth_1.5.12-1/changelog
http://svn.gna.org/viewcvs/wesnoth/trunk/src/terrain_translation.cpp?r2=32987&rev=32987&r1=31859&dir_pagestart=200
http://svn.gna.org/viewcvs/wesnoth/trunk/src/terrain_translation.cpp?rev=33078&dir_pagestart=200&view=log
https://exchange.xforce.ibmcloud.com/vulnerabilities/49294
https://gna.org/bugs/index.php?13031