NetHack before version 3.6.0 allowed malicious use of escaping of characters in the configuration file (usually .nethackrc) which could be exploited. This bug is patched in NetHack 3.6.0.
References
Link | Resource |
---|---|
https://github.com/NetHack/NetHack/commits/612755bfb5c412079795c68ba392df5d93874ed8 | Patch Third Party Advisory |
https://github.com/NetHack/NetHack/security/advisories/GHSA-2c7p-3fj4-223m | Third Party Advisory |
Configurations
History
No history.
Information
Published : 2020-03-10 17:15
Updated : 2024-02-04 20:39
NVD link : CVE-2020-5253
Mitre link : CVE-2020-5253
CVE.ORG link : CVE-2020-5253
JSON object : View
Products Affected
nethack
- nethack