Upstream information

CVE-2013-6411 at MITRE

Description

The HandleCrashedAircraft function in aircraft_cmd.cpp in OpenTTD 0.3.6 through 1.3.2 allows remote attackers to cause a denial of service (out-of-bounds read and crash) by crashing an aircraft outside of the map.

SUSE information

Overall state of this security issue: Does not affect SUSE products

This issue is currently rated as having moderate severity.

CVSS v2 Scores
  National Vulnerability Database
Base Score 5
Vector AV:N/AC:L/Au:N/C:N/I:N/A:P
Access Vector Network
Access Complexity Low
Authentication None
Confidentiality Impact None
Integrity Impact None
Availability Impact Partial
SUSE Bugzilla entry: 853041 [RESOLVED / FIXED]

SUSE Security Advisories:

    openSUSE-SU-2013:1932-1

List of released packages

Product(s) Fixed package version(s) References
openSUSE Tumbleweed
  • openttd >= 1.6.1-1.1
  • openttd-data >= 1.6.1-1.1
  • openttd-dedicated >= 1.6.1-1.1
Patchnames:
openSUSE Tumbleweed GA openttd-1.6.1-1.1


SUSE Timeline for this CVE

CVE page created: Thu Nov 28 22:15:40 2013
CVE page last modified: Thu Dec 7 13:06:45 2023