Nexuiz >=2.2.1 fixes a security issue resulting is a DOS. 2.2.3 is already in the tree, but not stable.
from http://www.frsirt.com/english/advisories/2006/4992 :
- Technical Description
Multiple vulnerabilities have been identified in Nexuiz, which could be exploited by attackers to execute arbitrary commands or cause a denial of service.
The first issue is due to an input validation error within "clientcommands", which could be exploited by remote attackers to inject arbitrary commands.
The second issue is due to an error when processing player connections, which could be exploited by attackers to crash a vulnerable application or exhaust all available memory resources, creating a denial of service condition.
- Affected Products
Nexuiz versions prior to 2.2.1
I removed 2.1
wasn't 2.1 the latest stable version for x86 and amd64?
whoops, you marked 2.2.3 stable, too. cool. thanks.
@security: what's next? glsa, no glsa?
I think since 2.1 was stable a glsa would be good.
Yes, good, you should join the security team :)
GLSA 200702-09, thanks everybody and sorry for the delay