View | Details | Raw Unified | Return to bug 184434
Collapse All | Expand All

(-)vuln.xml (+33 lines)
Lines 51-56 Link Here
51
51
52
-->
52
-->
53
<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
53
<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
54
  <vuln vid="d2073237-5b52-11e3-80f7-c86000cbc6ec">
55
    <topic>openttd -- Denial of service using forcefully crashed aircrafts</topic>
56
    <affects>
57
      <package>
58
	<name>openttd</name>
59
	<range><ge>0.3.6</ge><lt>1.3.3</lt></range>
60
      </package>
61
    </affects>
62
    <description>
63
      <body xmlns="http://www.w3.org/1999/xhtml">
64
	<p>OpenTTD reports:</p>
65
	<blockquote cite="https://security.openttd.org/en/CVE-2013-6411">
66
	  <p>The problem is caused by incorrectly handling the fact that
67
	    the aircraft circling the corner airport will be outside of the bounds
68
	    of the map. In the 'out of fuel' crash code the height of the tile
69
	    under the aircraft is determined. In this case that means a tile
70
	    outside of the allocated map array, which could occasionally
71
	    trigger invalid reads.</p>
72
	</blockquote>
73
      </body>
74
    </description>
75
    <references>
76
      <cvename>CVE-2013-6411</cvename>
77
      <url>https://security.openttd.org/en/CVE-2013-6411</url>
78
      <url>http://bugs.openttd.org/task/5820</url>
79
      <url>http://vcs.openttd.org/svn/changeset/26134</url>
80
    </references>
81
    <dates>
82
      <discovery>2013-11-28</discovery>
83
      <entry>2013-11-28</entry>
84
    </dates>
85
  </vuln>
86
54
  <vuln vid="620cf713-5a99-11e3-878d-20cf30e32f6d">
87
  <vuln vid="620cf713-5a99-11e3-878d-20cf30e32f6d">
55
    <topic>monitorix -- serious bug in the built-in HTTP server</topic>
88
    <topic>monitorix -- serious bug in the built-in HTTP server</topic>
56
    <affects>
89
    <affects>

Return to bug 184434