CVE-2006-1744

NameCVE-2006-1744
DescriptionBuffer overflow in pl_main.c in sail in BSDgames before 2.17-7 allows local users to execute arbitrary code via a long player name that is used in a scanf function call.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDSA-1036-1
Debian Bugs360989

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
bsdgames (PTS)buster, bullseye2.17-28fixed
bookworm2.17-29fixed
sid, trixie2.17-30fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
bsdgamessourcewoody2.13-7woody0DSA-1036-1
bsdgamessourcesarge2.7.59-7sarge1DSA-1036-1
bsdgamessource(unstable)2.17-7360989

Search for package or bug name: Reporting problems