Candidate: CVE-2019-10877
PublicDate: 2019-04-05 06:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10877
 https://github.com/teeworlds/teeworlds/issues/2071
 https://github.com/teeworlds/teeworlds/commit/d25869626a8cfbdd320929ba93ce73abed1402ce
 https://github.com/teeworlds/teeworlds/commit/e086f4b35b1adf7edc35b4ad332dc7ed1edc5988
Description:
 In Teeworlds 0.7.2, there is an integer overflow in CMap::Load() in
 engine/shared/map.cpp that can lead to a buffer overflow, because
 multiplication of width and height is mishandled.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H [9.8 CRITICAL]


Patches_teeworlds:
upstream_teeworlds: needs-triage
precise/esm_teeworlds: DNE
trusty_teeworlds: ignored (reached end-of-life)
trusty/esm_teeworlds: DNE (trusty was needs-triage)
xenial_teeworlds: ignored (end of standard support, was needed)
bionic_teeworlds: needed
cosmic_teeworlds: ignored (reached end-of-life)
disco_teeworlds: ignored (reached end-of-life)
eoan_teeworlds: released (0.7.2-5)
focal_teeworlds: released (0.7.2-5)
groovy_teeworlds: released (0.7.2-5)
hirsute_teeworlds: released (0.7.2-5)
impish_teeworlds: released (0.7.2-5)
jammy_teeworlds: released (0.7.2-5)
devel_teeworlds: released (0.7.2-5)