| View Issue Details [ Jump to Notes ] | [ Issue History ] [ Print ] | ||||||||
| ID | Project | Category | View Status | Date Submitted | Last Update | ||||
|---|---|---|---|---|---|---|---|---|---|
| 0000407 | Spring engine | General | public | 2007-01-28 13:23 | 2007-01-29 11:45 | ||||
| Reporter | elzix | ||||||||
| Assigned To | |||||||||
| Priority | normal | Severity | crash | Reproducibility | always | ||||
| Status | closed | Resolution | won't fix | ||||||
| Product Version | |||||||||
| Target Version | Fixed in Version | ||||||||
| Summary | 0000407: security overflow risk! | ||||||||
| Description | ok im not to sure how to explain this very well but spring is overriding windows commands. i was playing a game it used alot of my pc / ram and what happened was my keyboard and mouse froze unable to do a single thing (thats right no ctrl+alt+del or alt+tab or ctrl+shift+esc) but the funny part is the game continued to play i only noticed cos i couldnt scroll or click nor could i ctrl + a | ||||||||
| Additional Information | this is a big issue and should be resolved as quickly as possible because to my understanding the interference of this with windows could cause legality issues from the point of u have modified windows/disabled a part of a licensed software (not good..... if they find out) | ||||||||
| Tags | No tags attached. | ||||||||
| Checked infolog.txt for Errors | |||||||||
| Attached Files |
| ||||||||
 Relationships |
|
 Relationships |
| Notes |
|
|
KDR_11k (reporter) 2007-01-28 19:29 |
That can happen with DirectX software, there's no legality risk and "overflow" usually refers to being able to attack a program to make it run arbitrary code in order to escalate your privileges. Unless someone can send a malicious packet to Spring and take your computer over that way it is not an overflow error. Also you said it's always reproducible but you don't give any instructions on how to do so. |
|
tvo (reporter) 2007-01-29 11:45 |
Running in a window should work I think. It is normal for games to take up any resources available and grab mouse/keyboard input (doesn't modify/disable windows though, just uses some functions of the Windows/DirectX API, which should be fine), and in our case the reason lies in the used library (SDL), so we can't do anything about it. Furthermore, our license (the GNU GPL) clearly states that we aren't liable for anything (no warranty etc.), so no bugs can have legal implications, you always use spring at your own risk. |
| Notes |
| Issue History |
|||
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2007-01-28 13:23 | elzix | New Issue | |
| 2007-01-28 19:29 | KDR_11k | Note Added: 0000641 | |
| 2007-01-29 11:45 | tvo | Status | new => closed |
| 2007-01-29 11:45 | tvo | Note Added: 0000669 | |
| 2007-01-29 11:45 | tvo | Resolution | open => won't fix |
| Issue History |