Skip to content

heartbleed

wbouvywbouvy Member Posts: 33
in Android (Archive)
I ran a heartbleed scan and apparently, Baldur's Gate for Android is vulnerable. Doubt it's a real risk, but now you know :)

Comments

  • Troodon80Troodon80 Member, Developer Posts: 4,110
    Tagging @Dee.
  • CrevsDaakCrevsDaak Member Posts: 7,155
    I don't know a crap about Android but I can assume that this does not mean that we can make sausages out of Android verson of BG:EE, right?
    Seriously, does this mean that it's vunerable to virus/other programes trying to affect BG:EE and _that_ stuff?
  • wbouvywbouvy Member Posts: 33
    No, what this means is that (very rough approximation) when Baldur's Gate for Android is open to / converses with the internet (i.e. for multiplayer, and maybe the downloadable content check), a malicious party could get random chunks of memory data from it. I can't say for sure, but I think it's limited to game memory.
  • Troodon80Troodon80 Member, Developer Posts: 4,110
    edited April 2014
    @wbouvy, when it has in-game purchases that use the internet to make transactions, it's best to at least take a look at it even if they are not going across the same protocol.
  • wbouvywbouvy Member Posts: 33
    Yeah, this is trivial to fix. Disabling the openssl heartbeat or upgrading to a newer version would fix it.
Sign In or Register to comment.

2024 Overhaul Games, a division of Beamdog. © 2024 Hasbro, Inc. All Rights Reserved. Baldur's Gate, Dungeons & Dragons, D&D, Forgotten Realms, Baldur's Gate, Wizards of the Coast and their logos are trademarks of Wizards of the Coast LLC in the U.S.A. and other countries, and are used with permission. Hasbro and its logo are trademarks of Hasbro, Inc. and are used with permission. © 1998 BioWare Corp. All Rights Reserved. BioWare, the BioWare Infinity Engine and the BioWare logo are trademarks of Bioware Corp. Black Isle Studios and the Black Isle Studios logo are trademarks of Interplay Entertainment Corp. Atari and the Atari logo are trademarks owned by Atari Interactive, Inc. All other trademarks are the property of their respective owners.