Valve's Game Networking Sockets prior to version v1.2.0 improperly handles long encrypted messages in function AES_GCM_DecryptContext::Decrypt() when compiled using libsodium, leading to a Stack-Based Buffer Overflow and resulting in a memory corruption and possibly even a remote code execution.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HValvesoftware Game Networking Sockets
APPValvesoftware< 1.2.0
Related vulnerabilities
Valve's Game Networking Sockets prior to version v1.2.0 improperly handles long unreliable segments in functio...
Valve's Game Networking Sockets prior to version v1.2.0 improperly handles unreliable segments with negative o...
Valve's Game Networking Sockets prior to version v1.2.0 improperly handles inlined statistics messages in func...
A buffer overflow in Counter-Strike through 8684 allows a game server to execute arbitrary code on a remote cl...
An issue was discovered in Valve Steam Link build 643. When the SSH daemon is enabled for local development, t...