{"id":"CVE-2022-39047","details":"Freeciv before 2.6.7 and before 3.0.3 is prone to a buffer overflow vulnerability in the Modpack Installer utility's handling of the modpack URL.","modified":"2026-04-16T04:44:09.793705441Z","published":"2022-08-31T06:15:08.627Z","references":[{"type":"ADVISORY","url":"http://www.openwall.com/lists/oss-security/2022/08/31/1"},{"type":"ADVISORY","url":"https://bugs.debian.org/1017579"},{"type":"ADVISORY","url":"https://www.openwall.com/lists/oss-security/2022/08/05/1"},{"type":"FIX","url":"https://osdn.net/projects/freeciv/ticket/45299"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/freeciv/freeciv","events":[{"introduced":"0"},{"fixed":"6903bb4b90d92e9cf39bc8e2585fbbd0c4dd7818"},{"introduced":"9baec7afb360995627362d2be99e98cfc5cab061"},{"fixed":"50ff19ea17107e38aaf8d41991e2bb0b8f88bacd"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"2.6.7"},{"introduced":"3.0.0"},{"fixed":"3.0.3"}]}}],"versions":["BEFORE_AGENTS","R1_10_0","R1_11_0","R1_11_10","R1_11_4","R1_11_6","R1_11_8","R1_12_0","R1_13_0","R1_6_1","R1_6_2","R1_6_3","R1_6_4","R1_7_0a","R1_7_1","R1_7_2","R1_8_0a","R1_8_1","R1_8_3","R1_9_0","R2_6_0","R2_6_0_RC1","R2_6_0_RC2","R2_6_0_beta1","R2_6_0_beta2","R2_6_0_beta3","R2_6_1","R2_6_2","R2_6_3","R2_6_4","R2_6_5","R2_6_6","R3_0_0","R3_0_1","R3_0_2","S1_14-root","S2_0-root","S2_1-root","S2_2-root","S2_3-root","S2_4-root","S2_5-root","S2_6-root","freeciv153","freeciv154","gui-gtk","svn2git-S2_6"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-39047.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}