Summary: | games-fps/alephone Server DoS (CVE-2006-6663 CVE-2006-6664) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Executioner <keith> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | games |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://aluigi.altervista.org/PRIVOXY-FORCE/adv/alephonz-adv.txt | ||
Whiteboard: | B3(B1?) [noglsa] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | 159132 | ||
Bug Blocks: |
Description
Executioner
2007-01-14 19:39:50 UTC
You can start handling your bugs yourself, you know :) - setting the Severity - setting the Status Whiteboard according to our policy [1] - important: CCing the maintainer (/usr/portage/xx/xx/metadata.xml) [1] http://www.gentoo.org/security/en/vulnerability-policy.xml Okay, will do. I wasn't quite sure how far I was supposed to take it as a scout. (In reply to comment #2) > Okay, will do. I wasn't quite sure how far I was supposed to take it as a > scout. > No problem, you can handle the bugs you own. You're doing a great job at the moment, don't hesitate. Hi arches, alephone-20061228 is in the tree, thanks to nyhm. Could you test it and mark stable if appropriate, please? thanks x86 stable I can't test this, on startup i simply get this: --- CHROOT / # /usr/games/bin/alephone Aleph One SDL linux-gnu x86_64 Feb 14 2007 http://source.bungie.org/ Original code by Bungie Software <http://www.bungie.com/> Additional work by Loren Petrich, Chris Pruett, Rhys Hill et al. TCP/IP networking by Woody Zenfell Expat XML library by James Clark SDL port by Christian Bauer <Christian.Bauer@uni-mainz.de> This is free software with ABSOLUTELY NO WARRANTY. You are welcome to redistribute it under certain conditions. For details, see the file COPYING. Built with network play enabled. FATAL: Please be sure the files 'Map', 'Shapes', 'Images' and 'Sounds' are correctly installed and try again. (error -1) --- However, the latest stable has exactly the same issue. Can someone else from the amd64 team give it a try please? You don't run it by alephone, but alephone.sh, instead. AlephOne is only the engine, it requires data to play. We have one data ebuild in the tree already, alephone-infinity, so you can merge that, then run "alephone.sh infinity" to play^H^H^H^Htest. ;] Thanks for the explanation Chris. Seems worky, marked stable. thanks Simon and Chris, i vote mmm... i would vote a half-no. also tending to vote no closing without GLSA, feel free to reopen if you disagree |