mirror of
https://github.com/ioquake/jedi-academy.git
synced 2025-04-12 04:14:53 +00:00
No description
ac9e5f1f79
CVE-2006-3324 The Automatic Downloading option in the id3 Quake 3 Engine and the Icculus Quake 3 Engine (ioquake3) before revision 804 allows remote attackers to overwrite arbitrary files in the quake3 directory (fs_homepath cvar) via a long string of filenames, as contained in the neededpaks buffer. Luigi Auriemma q3cfilevar from Thilo Schulz in ioquake3 svn 804 git 813a6ecdc3b8572796a8a85b260b03e1c3d87ef4 - Fix bug that allows a malicious server to write and overwrite any files in the quake3 directory. Reported by Luigi Auriemma. - Moved directory traversal check to a more proper location. - Added a few sanity checks for checksum/pakname storage to fix a crash that can occur under certain circumstances. |
||
|---|---|---|
| base | ||
| code | ||
| codemp | ||
| ui | ||
| LICENSE.txt | ||
| raven-README.txt | ||
| README.txt | ||
| TODO | ||
Jedi Academy with various changes to make it build/run on more platforms including amd64/x86_64. Currently only the single player code runs on amd64. The game needs to be patched to 1.01 to work, the data in the steam version is already patched. How to build single player: mkdir build-sp && cd build-sp cmake ../code/ make copy jasp and jagame*.so to the directory containing base or demo How to build multiplayer: mkdir build-mp && cd build-mp cmake ../codemp/ make copy jamp and jampded to the directory containing base copy *.so to your base directory Known issues: Save games do not yet work on amd64. The demo has various issues and does not work properly. multiplayer has to be run with "+set sv_pure 0" for now