Lines 51-56
Link Here
|
51 |
|
51 |
|
52 |
--> |
52 |
--> |
53 |
<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> |
53 |
<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> |
|
|
54 |
<vuln vid="d2073237-5b52-11e3-80f7-c86000cbc6ec"> |
55 |
<topic>openttd -- Denial of service using forcefully crashed aircrafts</topic> |
56 |
<affects> |
57 |
<package> |
58 |
<name>openttd</name> |
59 |
<range><ge>0.3.6</ge><lt>1.3.3</lt></range> |
60 |
</package> |
61 |
</affects> |
62 |
<description> |
63 |
<body xmlns="http://www.w3.org/1999/xhtml"> |
64 |
<p>OpenTTD reports:</p> |
65 |
<blockquote cite="https://security.openttd.org/en/CVE-2013-6411"> |
66 |
<p>The problem is caused by incorrectly handling the fact that |
67 |
the aircraft circling the corner airport will be outside of the bounds |
68 |
of the map. In the 'out of fuel' crash code the height of the tile |
69 |
under the aircraft is determined. In this case that means a tile |
70 |
outside of the allocated map array, which could occasionally |
71 |
trigger invalid reads.</p> |
72 |
</blockquote> |
73 |
</body> |
74 |
</description> |
75 |
<references> |
76 |
<cvename>CVE-2013-6411</cvename> |
77 |
<url>https://security.openttd.org/en/CVE-2013-6411</url> |
78 |
<url>http://bugs.openttd.org/task/5820</url> |
79 |
<url>http://vcs.openttd.org/svn/changeset/26134</url> |
80 |
</references> |
81 |
<dates> |
82 |
<discovery>2013-11-28</discovery> |
83 |
<entry>2013-11-28</entry> |
84 |
</dates> |
85 |
</vuln> |
86 |
|
54 |
<vuln vid="620cf713-5a99-11e3-878d-20cf30e32f6d"> |
87 |
<vuln vid="620cf713-5a99-11e3-878d-20cf30e32f6d"> |
55 |
<topic>monitorix -- serious bug in the built-in HTTP server</topic> |
88 |
<topic>monitorix -- serious bug in the built-in HTTP server</topic> |
56 |
<affects> |
89 |
<affects> |