| Bug | Description |
|---|
| CVE-2020-5254 | In NetHack before 3.6.6, some out-of-bound values for the hilite_statu ... |
| CVE-2020-5253 | NetHack before version 3.6.0 allowed malicious use of escaping of char ... |
| CVE-2020-5214 | In NetHack before 3.6.5, detecting an unknown configuration file optio ... |
| CVE-2020-5213 | In NetHack before 3.6.5, too long of a value for the SYMBOL configurat ... |
| CVE-2020-5212 | In NetHack before 3.6.5, an extremely long value for the MENUCOLOR con ... |
| CVE-2020-5211 | In NetHack before 3.6.5, an invalid extended command in value for the ... |
| CVE-2020-5210 | In NetHack before 3.6.5, an invalid argument to the -w command line op ... |
| CVE-2020-5209 | In NetHack before 3.6.5, unknown options starting with -de and -i can ... |
| CVE-2019-19905 | NetHack 3.6.x before 3.6.4 is prone to a buffer overflow vulnerability ... |
| CVE-2003-0359 | nethack 3.4.0 and earlier installs certain setgid binaries with insecu ... |
| CVE-2003-0358 | Buffer overflow in (1) nethack 3.4.0 and earlier, and (2) falconseye 1 ... |