Guild icon
Teeworlds
discord.gg/teeworlds / development
For discussions around the development of the official Teeworlds
Between 2022-01-15 00:00:00Z and 2022-01-16 00:00:00Z
Avatar
GitHub BOT 2022-01-15 16:56:20Z
Author icon
Robyt3
[teeworlds/teeworlds] Pull request opened: #3018 Hotfix CVE-2021-43518
Hotfix for CVE-2021-43518. Closes #2981. Adding all the datafile validation (#2931) ended up being a rather large patch and it still needs some work. This hotfix just addresses the exploitable stack buffer overflow write. Fixing the other issues individually would be pointless, as there are at least 50-100 more distinct maps that can crash the client or cause ASAN/UBSAN errors.
Avatar
GitHub BOT 2022-01-15 17:08:03Z
Author icon
Robyt3
[teeworlds/teeworlds] Pull request opened: #3019 Fix OOB access in linereader, improve code style
Reserve one additional byte to ensure null termination in linereader and prevent OOB access when reading a very long line.
Avatar
GitHub BOT 2022-01-15 17:48:03Z
Author icon
Robyt3
[teeworlds/teeworlds] Pull request opened: #3020 Skip the UTF-8 BOM when reading text files
Fixes handling of text files encoded with UTF-8 BOM. This changes io_open so the UTF-8 BOM signature is transparently skipped if the flag IOFLAG_SKIP_BOM is set. It is not necessary to skip the BOM when reading json files, as the json parser already does this on its own.
Exported 3 message(s)