Medium severity5.5NVD Advisory· Published Feb 17, 2023· Updated Jun 17, 2026
CVE-2023-24809
CVE-2023-24809
Description
NetHack is a single player dungeon exploration game. Starting with version 3.6.2 and prior to version 3.6.7, illegal input to the "C" (call) command can cause a buffer overflow and crash the NetHack process. This vulnerability may be a security issue for systems that have NetHack installed suid/sgid and for shared systems. For all systems, it may result in a process crash. This issue is resolved in NetHack 3.6.7. There are no known workarounds.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
2- github.com/NetHack/NetHack/security/advisories/GHSA-2cqv-5w4v-mgchnvdVendor Advisory
- nethack.org/security/CVE-2023-24809.htmlnvdVendor Advisory
News mentions
0No linked articles in our index yet.