Search CVE reports
1 – 2 of 2 results
Needs evaluation
Dungeon Crawl Stone Soup (aka DCSS or crawl) before 0.25 allows remote attackers to execute arbitrary code via Lua bytecode embedded in an uploaded .crawlrc file.
1 affected package
crawl
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| crawl | Not affected | Not affected | Needs evaluation | Needs evaluation |
Fixed
crawl before 4.0.0 does not securely call programs when saving and loading games, which allows local users to gain privileges.
1 affected package
crawl
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| crawl | — | — | — | — |