FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

OpenTTD -- Denial of service (server) via infinite loop

Affected packages
1.0.1 <= openttd < 1.0.3

Details

VuXML ID b6069837-aadc-11df-82df-0015f2db7bde
Discovery 2010-06-27
Entry 2010-08-22

The OpenTTD Team reports:

When multiple commands are queued (at the server) for execution in the next game tick and an client joins the server can get into an infinite loop. With the default settings triggering this bug is difficult (if not impossible), however the larger value of the "frame_freq" setting is easier it is to trigger the bug.

[source]

References

CVE Name CVE-2010-2534
URL http://security.openttd.org/en/CVE-2010-2534

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.