CVE-2009-0878

EUVD-2009-0875
The read_game_map function in src/terrain_translation.cpp in Wesnoth before r32987 allows remote attackers to cause a denial of service (memory consumption and daemon hang) via a map with a large (1) width or (2) height.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 79%
Affected Products (NVD)
VendorProductVersion
wesnothwesnoth
𝑥
≤ 1.4.7
wesnothwesnoth
0.2.1
wesnothwesnoth
0.3
wesnothwesnoth
0.3.1
wesnothwesnoth
0.3.2
wesnothwesnoth
0.3.3
wesnothwesnoth
0.3.4
wesnothwesnoth
0.4
wesnothwesnoth
0.4.1
wesnothwesnoth
0.4.2
wesnothwesnoth
0.4.3
wesnothwesnoth
0.4.4
wesnothwesnoth
0.4.5
wesnothwesnoth
0.4.6
wesnothwesnoth
0.4.7
wesnothwesnoth
0.4.8
wesnothwesnoth
0.5
wesnothwesnoth
0.5.1
wesnothwesnoth
0.6
wesnothwesnoth
0.6.1
wesnothwesnoth
0.6.99.1
wesnothwesnoth
0.6.99.2
wesnothwesnoth
0.6.99.3
wesnothwesnoth
0.6.99.4
wesnothwesnoth
0.6.99.5
wesnothwesnoth
0.7
wesnothwesnoth
0.7.1
wesnothwesnoth
0.7.2
wesnothwesnoth
0.7.3
wesnothwesnoth
0.7.4
wesnothwesnoth
0.7.5
wesnothwesnoth
0.7.6
wesnothwesnoth
0.7.7
wesnothwesnoth
0.7.8
wesnothwesnoth
0.7.9
wesnothwesnoth
0.7.10
wesnothwesnoth
0.7.11
wesnothwesnoth
0.8
wesnothwesnoth
0.8.1
wesnothwesnoth
0.8.2
wesnothwesnoth
0.8.3
wesnothwesnoth
0.8.4
wesnothwesnoth
0.8.5
wesnothwesnoth
0.8.6
wesnothwesnoth
0.8.7
wesnothwesnoth
0.8.8
wesnothwesnoth
0.8.9
wesnothwesnoth
0.8.10
wesnothwesnoth
0.8.11
wesnothwesnoth
0.9.0
wesnothwesnoth
0.9.1
wesnothwesnoth
0.9.2
wesnothwesnoth
0.9.3
wesnothwesnoth
0.9.4
wesnothwesnoth
0.9.5
wesnothwesnoth
0.9.6
wesnothwesnoth
0.9.7
wesnothwesnoth
1.0:rc
wesnothwesnoth
1.0rcl:rcl
wesnothwesnoth
1.1
wesnothwesnoth
1.1.1
wesnothwesnoth
1.1.2
wesnothwesnoth
1.1.3
wesnothwesnoth
1.1.4
wesnothwesnoth
1.1.5
wesnothwesnoth
1.1.6
wesnothwesnoth
1.1.7
wesnothwesnoth
1.1.8
wesnothwesnoth
1.1.9
wesnothwesnoth
1.1.10
wesnothwesnoth
1.1.11
wesnothwesnoth
1.1.12
wesnothwesnoth
1.1.13
wesnothwesnoth
1.1.14
wesnothwesnoth
1.2
wesnothwesnoth
1.2.1
wesnothwesnoth
1.2.2
wesnothwesnoth
1.2.3
wesnothwesnoth
1.2.4
wesnothwesnoth
1.2.5
wesnothwesnoth
1.2.6
wesnothwesnoth
1.2.7
wesnothwesnoth
1.2.8
wesnothwesnoth
1.3.1
wesnothwesnoth
1.3.2
wesnothwesnoth
1.3.3
wesnothwesnoth
1.3.4
wesnothwesnoth
1.3.5
wesnothwesnoth
1.3.6
wesnothwesnoth
1.3.7
wesnothwesnoth
1.3.8
wesnothwesnoth
1.3.9
wesnothwesnoth
1.3.10
wesnothwesnoth
1.3.11
wesnothwesnoth
1.3.12
wesnothwesnoth
1.3.13
wesnothwesnoth
1.3.14
wesnothwesnoth
1.3.15
wesnothwesnoth
1.3.16
wesnothwesnoth
1.3.17
wesnothwesnoth
1.3.18
wesnothwesnoth
1.3.19
wesnothwesnoth
1.4
wesnothwesnoth
1.4.1
wesnothwesnoth
1.4.2
wesnothwesnoth
1.4.3
wesnothwesnoth
1.4.4
wesnothwesnoth
1.4.5
wesnothwesnoth
1.4.6
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
wesnoth
dapper
ignored
gutsy
ignored
hardy
Fixed 1:1.4-1ubuntu0.1
released
intrepid
Fixed 1:1.4.5-1ubuntu0.2
released
jaunty
Fixed 1:1.4.7-4
released
karmic
Fixed 1:1.4.7-4
released
Common Weakness Enumeration
References
http://launchpad.net/bugs/335089
http://launchpad.net/bugs/336396
http://packages.debian.org/changelogs/pool/main/w/wesnoth/wesnoth_1.4.7-4/changelog
http://packages.debian.org/changelogs/pool/main/w/wesnoth/wesnoth_1.5.12-1/changelog
http://svn.gna.org/viewcvs/wesnoth/trunk/src/terrain_translation.cpp?r2=32987&rev=32987&r1=31859&dir_pagestart=200
http://svn.gna.org/viewcvs/wesnoth/trunk/src/terrain_translation.cpp?rev=33078&dir_pagestart=200&view=log
https://exchange.xforce.ibmcloud.com/vulnerabilities/49294
https://gna.org/bugs/index.php?13031
http://launchpad.net/bugs/335089
http://launchpad.net/bugs/336396
http://packages.debian.org/changelogs/pool/main/w/wesnoth/wesnoth_1.4.7-4/changelog
http://packages.debian.org/changelogs/pool/main/w/wesnoth/wesnoth_1.5.12-1/changelog
http://svn.gna.org/viewcvs/wesnoth/trunk/src/terrain_translation.cpp?r2=32987&rev=32987&r1=31859&dir_pagestart=200
http://svn.gna.org/viewcvs/wesnoth/trunk/src/terrain_translation.cpp?rev=33078&dir_pagestart=200&view=log
https://exchange.xforce.ibmcloud.com/vulnerabilities/49294
https://gna.org/bugs/index.php?13031