March 8, 2020
NetHack 3.6.6 is the official release of NetHack that follows NetHack 3.6.5.
This release primarily corrects a security issue present in NetHack
versions 3.6.1, 3.6.2, 3.6.3, 3.6.4 and 3.6.5.
For details about the security issues please see https://www.nethack.org/security.
You are encouraged to update to NetHack 3.6.6 as soon as possible.
Here's a brief synopsis of the handful of bug fixes included in NetHack 3.6.6:
* invalid status highlight color could be maliciously used to corrupt memory
* formatting corpse names used internal buffers differently from formatting
* other objects and could potentially clobber memory
* avoid divide by 0 crash if 'bogusmon' (file of bogus monster types) is empty
* avoid #wizrumorcheck crash if either 'rumors.tru' or 'rumors.fal' or both
* were empty when makedefs built 'rumors'
* avoid "<mon>'s glorkum pass harmlessly through the shade" for weaponless mon
All of the fixes have been published on the public Git repository for the game.
A more complete list can be found in the game's sources in doc/fixes36.6. As usual,
a warning that some entries in that file may also be "spoilers".
Existing saved games and bones files from 3.6.0 through to 3.6.5 should work with
3.6.6, assuming that the same build configuration options were used.
The following command can be used on most platforms to help confirm the location of
various files that NetHack may use:
nethack --showpaths
The NetHack DevTeam is announcing the release of NetHack 3.6.5 on January 27,
2020
NetHack 3.6.5 is the official release of NetHack that follows NetHack 3.6.4.
This release primarily corrects security issues present in NetHack versions
3.6.0, 3.6.1, 3.6.2, 3.6.3 and 3.6.4.
CVE-2020-5214 Error recovery after syntax error in configuration file is
subject to a buffer overflow
CVE-2020-5213 SYMBOL configuration file option is subject to a buffer overflow
CVE-2020-5212 MENUCOLOR configuration file option is subject to a buffer
overflow
CVE-2020-5211 AUTOCOMPLETE configuration file option is subject to a buffer
overflow
CVE-2020-5210 NetHack command line -w option parsing is subject to a buffer
overflow
CVE-2020-5209 Command line parsing of options starting with -de and -i is
subject to a buffer overflow
CVE-2019-19905 Privilege escalation/remote code execution/crash in
configuration parsing
You are encouraged to update to NetHack 3.6.5 as soon as possible.
Here's a brief synopsis of the handful of bug fixes included in NetHack 3.6.5:
fix accessing mons[-1] when trying to gate in a non-valid demon
fix accessing mons[-1] when monster figures out if a tin cures stoning
have string_for_opt() return empty_optstr on failure
ensure existing callers of string_for_opt() check return value
before using it
fix potential buffer overflow in add_menu_coloring()
fix potential buffer overflow in sym_val()
fix potential buffer overflow in pline(), raw_printf(), and
config_error_add()
fix potential buffer overflow in choose_windows()
use vsnprintf instead of vsprintf in pline.c where possible
Windows: includes a fix from a 3.6.4 post-release update where
OPTIONS=map_mode:fit_to_screen could cause a game start failure
Windows: users with C-locale unmappable names could get game start failure
All of the fixes have been incrementally published on the public Git
repository for the game. A more complete list can be found in the game's
sources in doc/fixes36.5. As usual, a warning that some entries in that
file may also be "spoilers".
Existing saved games and bones files from 3.6.0 through to 3.6.4 should
work with 3.6.5, assuming that the same build configuration options were
used.
pkglint -r --network --only "migrate"
As a side-effect of migrating the homepages, pkglint also fixed a few
indentations in unrelated lines. These and the new homepages have been
checked manually.
https://www.nethack.org/security/index.html:
NetHack: Privilege escalation/remote code execution/crash in
configuration parsing
Severity: High
Affected versions: 3.6.0, 3.6.1, 3.6.2, 3.6.3
First Patched Version: 3.6.4
Basic Information:
A buffer overflow issue exists when reading very long lines from a
NetHack configuration file (usually named .nethackrc).
This vulnerability affects systems that have NetHack installed suid/sgid
and shared systems that allow users to upload their own configuration
files.
All users are urged to upgrade to NetHack 3.6.4 as soon as possible.
Additional information related to this advisory, if any, will be made
available at https://nethack.org/security.
From https://www.nethack.org/v363/release.html :
NetHack 3.6.3 is the official release of NetHack that follows NetHack 3.6.2.
Here's a synopsis of over 190 bug fixes and over 22 game enhancements and
community contributions made since the release of 3.6.2 in May 2019:
Fixed stale 'thrownobj' pointer for returning thrown aklys while engulfed
Fixed uarmh null pointer dereference if a helm of opposite alignment came off due to being polymorphed
Fixed 'object lost' panic when attempting to crawl of of the water during emergency disrobing/dropping
Running now stops when moving over engravings so you can tell where they are
Fixed detection of unseen/secret doors which failed to find monsters hiding under objects and failed to find monsters hiding at trap locations
Ensured fatal status conditions made it to disclosure and/or dumplog
Fixed "Bad fruit #N" warnings when saving bones with 'perm_invent' On
Fixed it so yellow dragons don't have green breath
Added several grammar corrections
Improved recognition of deafness for several situations including the playing of musical instruments and bribing negotiations with demon lords
Fixed ignoring of god's wrath when hero injured himself during altar kick
Fixed several cases where persistent inventory window was not updated
Fixed temple priests or shopkeepers moving over other monsters
Fixed a crash-causing bug when putting on levitation boots over a sink
Ensured that thrown or kicked objects will end up in bones
Made water go all the way to the edges of level on the Plane of Water
Made clouds disrupt line of sight along the edges of the Plane of Air
Improved and expanded usage of status highlighting percentage rules
Added more than 15 improvements and fixes to the curses window port
Added and documented significant changes to default directory choices for the Windows platform
Improved the layout and display of the player selection dialog used on the Windows graphical implementation
Improved performance of some tty versions by reducing the number of function calls made from mapglyph
Allowed the msdos implementation to build with curses and PDCurses
Over 100 other fixes and improvements
All of the fixes have been incrementally published on the public Git repository
for the game. A more complete list can be found in the game's sources in
doc/fixes36.3. As usual, a warning that some entries in that file may also be
"spoilers".
As with all releases of the game, we appreciate your feedback. Please submit
any bugs using the problem report form. Also, please check the "known bugs"
list before you log a problem - somebody else may have already found it.
Happy NetHacking!
as this causes build failure and a run-in with __builtin___vsprintf_chk()
on NetBSD 8.0. Instead just include <stdarg.h> and <stdio.h>.
Rename the patch file for include/system.h in the process.
Bump PKGREVISION.
are installed and run an installed one instead of insisting that
nethack-tty must always be installed. nethack-tty is still naturally
preferred as the default instead of cheap plastic imitations such
as nethack-x11.
games/nethack doesn't confuse pkgsrc into trying to do configuration
even when NO_CONFIGURE is specified there. fixes build of
games/nethack (well, "build", actually)
that these directories will be conditionally removed (based on reference
counts), regardless of the value of PKG_CONFIG. Bump the PKGREVISION
for packages that were modified as a result.
as the INSTALL and DEINSTALL scripts no longer distinguish between
the two types of files. Drop SUPPORT_FILES{,_PERMS} and modify the
packages in pkgsrc accordingly.