Multiple flaws were reported in OpenTTD prior to version 1.0.1, including: - Access restriction circumvention, remote crash (CVE-2010-0401) - Denial of service via improperly validated commands (CVE-2010-0402) - Denial of service (server) via leaking file descriptors (CVE-2010-0406) These vulnerabilities affect version 0.3.5 through 1.0.0, and are all fixed in 1.0.1. The links below also contain links to the upstream bug reports and commits that fix each issue. References: http://security.openttd.org/en/ http://security.openttd.org/en/CVE-2010-0401 http://security.openttd.org/en/CVE-2010-0402 http://security.openttd.org/en/CVE-2010-0406
Created openttd tracking bugs for this issue Affects: fedora-all [bug 588386]