Multiple flaws were reported in OpenTTD prior to version 1.0.1, including:
- Access restriction circumvention, remote crash (CVE-2010-0401)
- Denial of service via improperly validated commands (CVE-2010-0402)
- Denial of service (server) via leaking file descriptors (CVE-2010-0406)
These vulnerabilities affect version 0.3.5 through 1.0.0, and are all fixed in 1.0.1. The links below also contain links to the upstream bug reports and commits that fix each issue.
Created openttd tracking bugs for this issue
Affects: fedora-all [bug 588386]