godot

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description Advanced cross-platform 2D and 3D game engine
Version 3.3.2-1 [community]

Resolved

Group Affected Fixed Severity Status Ticket
AVG-1544 3.2.3-1 3.2.3-2 Medium Fixed FS#70057
Issue Group Severity Remote Type Description
CVE-2021-26826 AVG-1544 Medium Yes Arbitrary code execution
A stack overflow issue exists in Godot Engine version 3.2.3 and is caused by improper boundary checks when loading TGA image files. Depending on the context...
CVE-2021-26825 AVG-1544 Medium Yes Arbitrary code execution
An integer overflow issue exists in Godot Engine version 3.2.3 that can be triggered when loading specially crafted TGA image files. The vulnerability...

Advisories

Date Advisory Group Severity Type
25 Mar 2021 ASA-202103-26 AVG-1544 Medium arbitrary code execution