{"id":"CVE-2019-10878","details":"In Teeworlds 0.7.2, there is a failed bounds check in CDataFileReader::GetData() and CDataFileReader::ReplaceData() and related functions in engine/shared/datafile.cpp that can lead to an arbitrary free and out-of-bounds pointer write, possibly resulting in remote code execution.","modified":"2026-03-19T12:35:03.146297Z","published":"2019-04-05T05:29:03.250Z","related":["openSUSE-SU-2019:1793-1","openSUSE-SU-2019:1999-1"],"references":[{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00046.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00077.html"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5KCS2CFDYJFBLZ4QKVPNJWHOZEGQ2LBC/"},{"type":"FIX","url":"https://github.com/teeworlds/teeworlds/issues/2073"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/teeworlds/teeworlds","events":[{"introduced":"0"},{"last_affected":"f20f509cf26468aed67d37f9e92b36a73f176091"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"0.7.2"}]}}],"versions":["0.5-endofline","0.6-endofline","0.6-start","0.6.0-release","0.6.1-release","0.7-start","0.7.0","0.7.1","0.7.2"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-10878.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}