Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 194151 - games-sports/racer-bin UDP message buffer overflow (CVE-2007-4370)
Summary: games-sports/racer-bin UDP message buffer overflow (CVE-2007-4370)
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: High major (vote)
Assignee: Gentoo Security
Whiteboard: B1? [glsa]
Depends on:
Reported: 2007-09-29 00:50 UTC by Robert Buchholz (RETIRED)
Modified: 2014-12-12 00:35 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---


Note You need to log in before you can comment on or make changes to this bug.
Description Robert Buchholz (RETIRED) gentoo-dev 2007-09-29 00:50:10 UTC
  Multiple buffer overflows in the (1) client and (2) server in Racer 0.5.3
  beta 5 allow remote attackers to execute arbitrary code via a long string
  to UDP port 26000.
Comment 1 Robert Buchholz (RETIRED) gentoo-dev 2007-09-29 00:51:46 UTC
I don't know if the vulnerability is specific to the Beta version mentioned in the CVE and whether our version is vulnerable-

Games, please advise.
Comment 2 Mr. Bones. (RETIRED) gentoo-dev 2007-10-03 06:30:23 UTC
There's no mention of 0.5.0 in any of the stuff I could find on this.  Is there any reason to think the version in portage is vulnerable?
Comment 3 Robert Buchholz (RETIRED) gentoo-dev 2007-10-03 10:23:27 UTC
(In reply to comment #2)
> Is there any reason to think the version in portage is vulnerable?

Only that a later version is vulnerable. It's reason enough for me to believe that the prior version *might* also be vulnerable.

If you have the game installed, you could try the exploit at
Comment 4 Robert Buchholz (RETIRED) gentoo-dev 2007-10-17 01:19:05 UTC
Mr. Bones, were you able to reproduce this?
Comment 5 Mr. Bones. (RETIRED) gentoo-dev 2007-10-17 03:02:00 UTC
I didn't try.
Comment 6 Matti Bickel (RETIRED) gentoo-dev 2009-01-01 17:24:35 UTC
Uh, a year for a B1 vulnerability? Can't check it b/c i don't have a x86 here, but there's now version 0.5.4b1 available. maybe that fixes it?
Comment 7 KinG-InFeT 2012-02-17 18:01:52 UTC
in V0.5.4 BETA 1 is stable and fixed this vulnerability
Comment 8 Tim Sammut (RETIRED) gentoo-dev 2012-02-18 21:55:28 UTC
This package was stable on x86, but has since been hardmasked. 

# Samuli Suominen <> (30 Oct 2011)
# Masked for security bug #294253, use only at your own risk!

GLSA request filed.
Comment 9 KinG-InFeT 2012-06-03 15:13:08 UTC
Comment 10 GLSAMaker/CVETool Bot gentoo-dev 2014-12-12 00:35:36 UTC
This issue was resolved and addressed in
 GLSA 201412-09 at
by GLSA coordinator Sean Amoss (ackle).