ioquake/ioq3
0
0
Fork 0
mirror of https://github.com/ioquake/ioq3.git synced 2024-11-10 15:21:35 +00:00
Code Issues Projects Releases Packages Wiki Activity
2763 commits 1 branch 0 tags 137 MiB
Commit graph

133 commits

Author SHA1 Message Date
Thilo Schulz
7d51d75b05 - Fix arbitrary cvar overwrite flaw: http://aluigi.altervista.org/adv.htm 
- Add myself to maintainer list :)
 2006-07-03 21:37:50 +00:00
Thilo Schulz
e02617ee89 Little fix for the sanity check fix from previous rev... 2006-06-16 20:47:29 +00:00
Thilo Schulz
813a6ecdc3 - Fix bug that allows a malicious server to write and overwrite any files in the quake3 directory. 
Reported by Luigi Auriemma.
- Moved directory traversal check to a more proper location.
- Added a few sanity checks for checksum/pakname storage to fix a crash that can occur under certain circumstances.
 2006-06-16 20:38:08 +00:00
Thilo Schulz
60293f49ee Fix bug that permits download of arbitrary files from a download enabled server by checking requested file name against the list of loaded pk3 files. See CVE-2006-2082 2006-05-08 19:53:41 +00:00
Thilo Schulz
d21411452e Add string length checking to function COM_StripExtension. This fixes the R_RemapShader buffer overflow exploit that can be found here: 
http://milw0rm.com/exploits/1750
 2006-05-06 01:56:24 +00:00
Thilo Schulz
70fca10af2 Replaced various "baseq3" strings with the centrally defined BASEGAME macro. 2006-04-26 11:27:12 +00:00
Thilo Schulz
31fdab187c Fix didn't work yet because it didn't use the buffer where the filename extension chop-off is done. D'oh! 2006-04-23 20:04:42 +00:00
Thilo Schulz
40d5eee8ef Fix prohibits illegal downloading of id PK3 files from servers. That bug is hit by *every* official server release from ID. 2006-04-22 18:24:50 +00:00
Ludwig Nussel
be6ca402e8 accept pak0.pk3 in demoq3/ as well 2006-03-08 11:02:20 +00:00
Tim Angus
4ab96373e6 * Only check the checksum on baseq3 pak0.pk3 2006-01-22 17:05:43 +00:00
Tim Angus
c3f7915a8b * Overhaul of console autocompletion 
- No longer does weird stuff like move the cursor inappropriately
  - Autocomplete works with compound commands
  - Special autocomplete on some commands e.g. \map, \demo
  - Removed various hacks used to counter the original autocomplete code
 2006-01-22 01:58:50 +00:00
Tim Angus
6a396f761f * Yet another MD4 implementation 
* Removed Com_BlockChecksumkey and replaced its functionality in the calling
  function
 2006-01-18 15:53:50 +00:00
Tim Angus
1171a63aea * Remove FS_SetRestrictions 
* Add FS_CheckPak0 for better error messages where dumb users are involved
 2006-01-05 02:06:25 +00:00
Tim Angus
a21eb2bbcb * AVI video output 
- Uses motion jpeg codec by default
  - Use cl_avidemo to set a framerate
  - \video [filename] to start capture
  - \stopvideo to stop capture
  - Audio capture is a bit ropey
 2006-01-04 03:12:12 +00:00
Ludwig Nussel
92ad3e99dc fix typo in comment 2005-12-30 17:52:56 +00:00
Tim Angus
fee4381e18 * Remove the debug text that nobody seemed to notice 2005-11-19 02:14:34 +00:00
Tim Angus
82893aebc9 * Bleh.. whitespace 2005-11-16 20:25:36 +00:00
Tim Angus
387d8041ce * Partial implementation of FS_Seek for files in pk3s 
* A couple of RIFF decoder tweaks/fixes
 2005-11-16 20:23:37 +00:00
Tim Angus
05e8ab9538 * Added STATUS 
* Updated TODO
* Moved ChangeLog to root
* Updated ChangeLog
* s/Foobar/Quake III Arena Source Code/
* Biggest patch EVAR. I wonder how many mail boxes this will fill...
 2005-10-29 01:53:09 +00:00
Tim Angus
3a2ad50406 * Moved various source files from their mod sdk locations to places more 
appropriate for open source Q3
* This patch looks bigger than it really is, however it will probably break the
  VC and OS X builds (easy to fix though)
 2005-10-26 19:45:21 +00:00
Tim Angus
d0204def78 * Removed nonsensical "smells like demo data, continueing[sic] anyways" message 2005-09-26 22:26:13 +00:00
Tim Angus
fe14a45ad1 * Applied ajax's cleanup patch 2005-09-23 17:39:14 +00:00
Tim Angus
33a48a0336 * Fix to multiple buffer overflow bugs in CL_Rcon_f 
* Fix to COM_ParseExt 1 byte overwrite bug
* Fixed some missing calls to trap_FS_FCloseFile
* Fixed q3msgboom and q3infoboom bugs
* Fixed some qboolean type confusion
* Above fixes from http://www.quakesrc.org/forums/viewtopic.php?t=5374
 2005-09-19 17:45:29 +00:00
Six
54351a83c4 . 2005-09-04 05:45:05 +00:00
Six
38e3825516 Changed inline to __inline. 
Visual C does not accept the inline keyword, only __inline.

Visual C does not recognize the #warning compiler directive
 2005-09-04 05:19:58 +00:00
Zachary Slater
f327407bb8 Cleanups from pomac! 2005-09-02 20:13:47 +00:00
Ludwig Nussel
fc29447726 really don't add restrictions on demo data 2005-08-30 15:30:07 +00:00
Ludwig Nussel
9a455ba5ec disable demo restrictions 2005-08-30 11:37:53 +00:00
Ludwig Nussel
5ae70d54b0 remove svn:executable property 2005-08-28 17:54:51 +00:00
Zachary Slater
f46ede91fb Ludwig's 1st diff: Some 64bit fixes for x86_64. Also fixes Makefile build. 2005-08-27 02:24:00 +00:00
Zachary Slater
59cce31e75 newlines fixed 2005-08-26 17:39:27 +00:00
Zachary Slater
5b755058f5 Itsa me, quake3io! 2005-08-26 04:48:05 +00:00
Travis Bradshaw
dbe4ddb103 The Quake III Arena sources as originally released under the GPL license on August 20, 2005. 2012-01-31 13:41:34 -06:00