UBUNTU-CVE-2011-2764

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2011-2764

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2011/UBUNTU-CVE-2011-2764.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2011-2764

Upstream

CVE-2011-2764

Published

2011-08-04T02:45:00Z

Modified

2026-05-20T16:03:04.528266082Z

Severity

Ubuntu - medium

Summary

[none]

Details

The FS_CheckFilenameIsNotExecutable function in qcommon/files.c in the ioQuake3 engine 1.36 and earlier, as used in World of Padman, Smokin' Guns, OpenArena, Tremulous, and ioUrbanTerror, does not properly determine dangerous file extensions, which allows remote attackers to execute arbitrary code via a crafted third-party addon that creates a Trojan horse DLL file.

References

Affected packages

Ubuntu:16.04:LTS

openarena

Package

Name: openarena
Purl: pkg:deb/ubuntu/openarena?arch=source&distro=xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

0.*

0.8.8-14

0.8.8-15

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "openarena",
            "binary_version": "0.8.8-15"
        },
        {
            "binary_name": "openarena-server",
            "binary_version": "0.8.8-15"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2011/UBUNTU-CVE-2011-2764.json"

Ubuntu:18.04:LTS

openarena

Package

Name: openarena
Purl: pkg:deb/ubuntu/openarena?arch=source&distro=bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

0.*

0.8.8-19

0.8.8-20

0.8.8+dfsg-1

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "openarena",
            "binary_version": "0.8.8+dfsg-1"
        },
        {
            "binary_name": "openarena-server",
            "binary_version": "0.8.8+dfsg-1"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2011/UBUNTU-CVE-2011-2764.json"

Ubuntu:20.04:LTS

openarena

Package

Name: openarena
Purl: pkg:deb/ubuntu/openarena?arch=source&distro=focal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

0.*

0.8.8+dfsg-2

0.8.8+dfsg-3

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "openarena",
            "binary_version": "0.8.8+dfsg-3"
        },
        {
            "binary_name": "openarena-server",
            "binary_version": "0.8.8+dfsg-3"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2011/UBUNTU-CVE-2011-2764.json"

Ubuntu:22.04:LTS

openarena

Package

Name: openarena
Purl: pkg:deb/ubuntu/openarena?arch=source&distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

0.*

0.8.8+dfsg-5

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "openarena",
            "binary_version": "0.8.8+dfsg-5"
        },
        {
            "binary_name": "openarena-server",
            "binary_version": "0.8.8+dfsg-5"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2011/UBUNTU-CVE-2011-2764.json"

Ubuntu:24.04:LTS

openarena

Package

Name: openarena
Purl: pkg:deb/ubuntu/openarena?arch=source&distro=noble

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

0.*

0.8.8+dfsg-6

0.8.8+dfsg-7

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "openarena",
            "binary_version": "0.8.8+dfsg-7"
        },
        {
            "binary_name": "openarena-server",
            "binary_version": "0.8.8+dfsg-7"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2011/UBUNTU-CVE-2011-2764.json"

Ubuntu:25.10

openarena

Package

Name: openarena
Purl: pkg:deb/ubuntu/openarena?arch=source&distro=questing

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

0.*

0.8.8+dfsg-8

0.8.8+dfsg-10

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "openarena",
            "binary_version": "0.8.8+dfsg-10"
        },
        {
            "binary_name": "openarena-server",
            "binary_version": "0.8.8+dfsg-10"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2011/UBUNTU-CVE-2011-2764.json"

Ubuntu:26.04:LTS

openarena

Package

Name: openarena
Purl: pkg:deb/ubuntu/openarena?arch=source&distro=resolute

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

0.*

0.8.8+dfsg-10

0.8.8+dfsg-11

Ecosystem specific

{
    "binaries": [
        {
            "binary_name": "openarena",
            "binary_version": "0.8.8+dfsg-11"
        },
        {
            "binary_name": "openarena-server",
            "binary_version": "0.8.8+dfsg-11"
        }
    ]
}

Database specific

source

"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2011/UBUNTU-CVE-2011-2764.json"