CVE-2018-1000224

2018-08-2020:29:01

Debian Security Bug Tracker

security-tracker.debian.org

godot engine

dos attack

network packets

serialization vulnerability

vulnerability fix

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.003

Percentile

66.3%

JSON

Godot Engine version All versions prior to 2.1.5, all 3.0 versions prior to 3.0.6. contains a Signed/unsigned comparison, wrong buffer size chackes, integer overflow, missing padding initialization vulnerability in (De)Serialization functions (core/io/marshalls.cpp) that can result in DoS (packet of death), possible leak of uninitialized memory. This attack appear to be exploitable via A malformed packet is received over the network by a Godot application that uses built-in serialization (e.g. game server, or game client). Could be triggered by multiplayer opponent. This vulnerability appears to have been fixed in 2.1.5, 3.0.6, master branch after commit feaf03421dda0213382b51aff07bd5a96b29487b.

OSVersionArchitecturePackageVersionFilename
Debian12allgodot< 3.2.3-stable-1godot_3.2.3-stable-1_all.deb
Debian11allgodot< 3.2.3-stable-1godot_3.2.3-stable-1_all.deb
Debian999allgodot< 3.5.2-stable-2godot_3.5.2-stable-2_all.deb
Debian13allgodot< 3.5.2-stable-2godot_3.5.2-stable-2_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	godot	< 3.2.3-stable-1	godot_3.2.3-stable-1_all.deb
Debian	11	all	godot	< 3.2.3-stable-1	godot_3.2.3-stable-1_all.deb
Debian	999	all	godot	< 3.5.2-stable-2	godot_3.5.2-stable-2_all.deb
Debian	13	all	godot	< 3.5.2-stable-2	godot_3.5.2-stable-2_all.deb