Short description: Buffer overflow in "-g" parameter handling
Related bug reports:
Patches: (sometimes more fuzz is needed to apply them)
- For version 0.1.0 up to including 0.3.3
- For version 0.3.4 up to including 0.4.0.1
- For version 0.4.5 up to including 0.5.3
- For version 0.6.0 up to including 0.6.1
Buffer overflow allowing local users to possibly execute arbitrary code via a large filename supplied to the “-g” parameter in the ttd_main function.
NOTE: it is unlikely that this issue would cross privilege boundaries in typical environments.