Mailing the story:

Debian alert: New crawl packages fix potential local games exploit

  • Mailing list (Posted by on CST)
  • Story Type: Security; Groups: Debian
"Steve Kemp from the GNU/Linux audit project discovered a problem in crawl, another console based dungeon exploration game, in the vein of nethack and rogue. The program uses several environment variables as inputs but doesn't apply a size check before copying one of them into a fixed size buffer."
What is your name?

What is your E-Mail address?

What is the email address of the recipient?

Add a special note from yourself?