← Back

Chocolate Doom

chocolate-doom

1 CVE • 2 products

Products (2)

Click to collapse
Toggle
Chocolate Doom
chocolate_doom
1 CVE
Crispy Doom
crispy_doom
1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2020-14983
2Chocolate Doom
Opensuse
4Backports
Chocolate DoomCrispy Doom+1 more
Nov 21, 2024
Jun 22, 2020
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
The server in Chocolate Doom 3.0.0 and Crispy Doom 5.8.0 doesn't validate the user-controlled num_players value, leading to a buffer overflow. A malicious user can overwrite the server's stack.