Bug 712128 (CVE-2020-5254)

Summary:	<games-roguelike/nethack-3.6.6: exploitable out-of-bound values (CVE-2020-5254)
Product:	Gentoo Security	Reporter:	filip ambroz <filip.ambroz>
Component:	Vulnerabilities	Assignee:	Gentoo Security <security>
Status:	RESOLVED FIXED
Severity:	trivial	CC:	games
Priority:	Normal
Version:	unspecified
Hardware:	All
OS:	Linux
URL:	https://nethack.org/security/CVE-2020-5254.html
See Also:	https://bugs.gentoo.org/show_bug.cgi?id=707110
Whiteboard:	~2 [noglsa cve]
Package list:		Runtime testing required:	---

Description filip ambroz 2020-03-11 08:21:35 UTC

Some out-of-bound values for the hilite_status option can be exploited.
This vulnerability affects systems that have NetHack installed suid/sgid and shared systems that allow users to upload their own configuration files. 

References:
https://github.com/NetHack/NetHack/security/advisories/GHSA-2ch6-6r8h-m2p9
https://github.com/dpmdpm2/CVE-2020-5254
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-5254
https://nvd.nist.gov/vuln/detail/CVE-2020-5254
https://security-tracker.debian.org/tracker/CVE-2020-5254
https://bugzilla.redhat.com/show_bug.cgi?id=1812229

Solution: upgrade to 3.6.6

Comment 1 Sam James archtester

2020-03-30 15:04:23 UTC

3.6.6 addition: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=99ac822df309e7805ae6c557055f79a3532d06f4

cleanup: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=ac2c30327e98c5d15c0fa0e94d11a6cabd997683

Closing because noglsa and tree is clean.