Summary: | app-games/xgalaga | ||
---|---|---|---|
Product: | Gentoo Linux | Reporter: | Daniel Ahlberg (RETIRED) <aliz> |
Component: | New packages | Assignee: | Gentoo Security <security> |
Status: | RESOLVED INVALID | ||
Severity: | critical | CC: | games |
Priority: | Highest | ||
Version: | 1.0 | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- |
Description
Daniel Ahlberg (RETIRED)
2003-07-06 13:43:56 UTC
xgalaga has not setuid flag by default. If it's still vulnerable, it can't give elevtaed privileges. yeah, we're not vulnerable, but i'd still like to add a patch if one exists in other words, we dont need a GLSA, we just want a patch ;) i see that there's already a patch for that vuln... if((home = getenv("HOME"))) { - sprintf(my_file_name, "%s/.xgalscores", home); [...] + snprintf(my_file_name, sizeof(my_file_name)-1, "%s/.xgalscores", home); in the diff that is download with xgalaga. So we don't need a patch :) excellent :) |