Oval Definition:oval:org.mitre.oval:def:8370
Revision Date:2014-06-23Version:18
Title:DSA-1737 wesnoth -- several vulnerabilities
Description:Several security issues have been discovered in wesnoth, a fantasy turn-based strategy game. The Common Vulnerabilities and Exposures project identifies the following problems: Daniel Franke discovered that the wesnoth server is prone to a denial of service attack when receiving special crafted compressed data. Daniel Franke discovered that the sandbox implementation for the python AIs can be used to execute arbitrary python code on wesnoth clients. In order to prevent this issue, the python support has been disabled. A compatibility patch was included, so that the affected campagne is still working properly.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2009-0366
CVE-2009-0367
DSA-1737
Platform(s):Debian GNU/Linux 4.0
Debian GNU/Linux 5.0
Product(s):wesnoth
Definition Synopsis
  • Release section
  • Debian GNU/Linux 5.0 is installed
  • AND Architecture section
  • Architecture independent section
  • Installed architecture is all
  • AND Packages section
  • wesnoth-sotbe is earlier than 1.4.4-2+lenny1
  • OR wesnoth-aoi is earlier than 1.4.4-2+lenny1
  • OR wesnoth-tsg is earlier than 1.4.4-2+lenny1
  • OR wesnoth-nr is earlier than 1.4.4-2+lenny1
  • OR wesnoth-l is earlier than 1.4.4-2+lenny1
  • OR wesnoth-music is earlier than 1.4.4-2+lenny1
  • OR wesnoth-thot is earlier than 1.4.4-2+lenny1
  • OR wesnoth-httt is earlier than 1.4.4-2+lenny1
  • OR wesnoth-tools is earlier than 1.4.4-2+lenny1
  • OR wesnoth-sof is earlier than 1.4.4-2+lenny1
  • OR wesnoth-data is earlier than 1.4.4-2+lenny1
  • OR wesnoth-ttb is earlier than 1.4.4-2+lenny1
  • OR wesnoth-trow is earlier than 1.4.4-2+lenny1
  • OR wesnoth-did is earlier than 1.4.4-2+lenny1
  • OR wesnoth-ei is earlier than 1.4.4-2+lenny1
  • OR wesnoth-utbs is earlier than 1.4.4-2+lenny1
  • OR wesnoth-all is earlier than 1.4.4-2+lenny1
  • OR Architecture dependent section
  • Supported architectures section
  • Installed architecture is s390
  • OR Installed architecture is amd64
  • OR Installed architecture is sparc
  • OR Installed architecture is arm
  • OR Installed architecture is i386
  • OR Installed architecture is armel
  • OR Installed architecture is mips
  • OR Installed architecture is ia64
  • OR Installed architecture is alpha
  • OR Installed architecture is powerpc
  • OR Installed architecture is mipsel
  • OR Installed architecture is hppa
  • AND Packages section
  • wesnoth-server is earlier than 1.4.4-2+lenny1
  • OR wesnoth is earlier than 1.4.4-2+lenny1
  • OR wesnoth-editor is earlier than 1.4.4-2+lenny1
  • OR wesnoth-dbg is earlier than 1.4.4-2+lenny1
  • OR Release section
  • Debian GNU/Linux 4.0 is installed.
  • AND Architecture section
  • Architecture independent section
  • Installed architecture is all
  • AND Packages section
  • wesnoth-data is earlier than 1.2-5
  • OR wesnoth-tsg is earlier than 1.2-5
  • OR wesnoth-music is earlier than 1.2-5
  • OR wesnoth-httt is earlier than 1.2-5
  • OR wesnoth-ttb is earlier than 1.2-5
  • OR wesnoth-trow is earlier than 1.2-5
  • OR wesnoth-ei is earlier than 1.2-5
  • OR wesnoth-utbs is earlier than 1.2-5
  • OR Architecture dependent section
  • Supported architectures section
  • Installed architecture is s390
  • OR Installed architecture is amd64
  • OR Installed architecture is sparc
  • OR Installed architecture is arm
  • OR Installed architecture is i386
  • OR Installed architecture is ia64
  • OR Installed architecture is alpha
  • OR Installed architecture is powerpc
  • OR Installed architecture is mipsel
  • OR Installed architecture is hppa
  • AND Packages section
  • wesnoth-server is earlier than 1.2-5
  • OR wesnoth is earlier than 1.2-5
  • OR wesnoth-editor is earlier than 1.2-5
    • BACK