CVE-2018-1999023 log

Source
Severity High
Remote Yes
Type Arbitrary code execution
Description
"The Battle for Wesnoth", which allows arbitrary code execution by exploiting a vulnerability within the Lua scripting language engine which allows escaping existing sandbox measures in place and executing untrusted bytecode
Group Package Affected Fixed Severity Status Ticket
AVG-741 wesnoth 1.14.3-1 1.14.4-1 High Fixed
Date Advisory Group Package Severity Description
25 Jul 2018 ASA-201807-15 AVG-741 wesnoth High arbitrary code execution
References
http://www.openwall.com/lists/oss-security/2018/07/20/1
https://github.com/wesnoth/wesnoth/commit/d911268a783467842d38eae7ac1630f1fea41318