Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An integer overflow issue exists in Godot Engine up to v3.2 that can be triggered when loading specially crafted.TGA image files. The vulnerability exists in ImageLoaderTGA::load_image() function at line: const size_t buffer_size = (tga_header.image_width * tga_header.image_height) * pixel_size; The bug leads to Dynamic stack buffer overflow. Depending on the context of the application, attack vector can be local or remote, and can lead to code execution and/or system crash.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Godot 输入验证错误漏洞
Vulnerability Description
Godot是一款跨平台的游戏引擎。该引擎支持通过统一界面创建2D和3D游戏。 Godot v3.2版本存在输入验证错误漏洞,该漏洞源于ImageLoaderTGA: load_image行导致动态堆栈缓冲区溢出。根据应用程序的上下文,攻击向量可以是本地的或远程的,并可能导致代码执行和/或系统崩溃。
CVSS Information
N/A
Vulnerability Type
N/A