mfrancis95
released this
10 Oct 21:52
·
1665 commits
to master
since this release
This is a point release that fixes a security vulnerability (CVE-2020-14983) where an unchecked field in the Chocolate Doom server logic could allow a malicious attacker to trigger arbitrary code execution against Chocolate Doom servers.
Thanks to Michał Dardas from LogicalTrust for discovering the vulnerability.