mirror of
https://github.com/ioquake/jedi-academy.git
synced 2024-11-21 20:01:10 +00:00
No description
85caaddab4
CVE-2006-2082 Directory traversal vulnerability in Quake 3 engine, as used in products including Quake3 Arena, Return to Castle Wolfenstein, Wolfenstein: Enemy Territory, and Star Trek Voyager: Elite Force, when the sv_allowdownload cvar is enabled, allows remote attackers to read arbitrary files from the server via ".." sequences in a .pk3 file request. from Thilo Schulz in ioquake3 svn 777 git 60293f49ee8c665673202e80ecd103f13a9fa6ab Fix bug that permits download of arbitrary files from a download enabled server by checking requested file name against the list of loaded pk3 files. See CVE-2006-2082 |
||
|---|---|---|
| base | ||
| code | ||
| codemp | ||
| ui | ||
| LICENSE.txt | ||
| raven-README.txt | ||
| README.txt | ||
| TODO | ||
Jedi Academy with various changes to make it build/run on more platforms including amd64/x86_64. Currently only the single player code runs on amd64. The game needs to be patched to 1.01 to work, the data in the steam version is already patched. How to build single player: mkdir build-sp && cd build-sp cmake ../code/ make copy jasp and jagame*.so to the directory containing base or demo How to build multiplayer: mkdir build-mp && cd build-mp cmake ../codemp/ make copy jamp and jampded to the directory containing base copy *.so to your base directory Known issues: Save games do not yet work on amd64. The demo has various issues and does not work properly. multiplayer has to be run with "+set sv_pure 0" for now