CVE-2021-26826 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Medium
Remote	Yes
Type	Arbitrary code execution
Description	A stack overflow issue exists in Godot Engine version 3.2.3 and is caused by improper boundary checks when loading TGA image files. Depending on the context of the application, the attack vector can be local or remote, and can lead to code execution and/or a system crash.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-1544	godot	3.2.3-1	3.2.3-2	Medium	Fixed	FS#70057

Date	Advisory	Group	Package	Severity	Type
25 Mar 2021	ASA-202103-26	AVG-1544	godot	Medium	arbitrary code execution

References
https://github.com/godotengine/godot/pull/45702 https://github.com/godotengine/godot/commit/113b5ab1c45c01b8e6d54d13ac8876d091f883a8