NetHack: NetHack 3.4.3 privilege escalation

Severity: High
Affected versions: 3.4.3 and earlier
First Patched Version: 3.6.0

Basic Information:
Malicious use of escaping of characters in the configuration file (usually .nethackrc) can be exploited.

This vulnerability affects systems that have NetHack installed suid/sgid and shared systems that allow users to upload their own configuration files.

The NetHack 3.4 series (including 3.4.3) is no longer supported. Users are encouraged to upgrade to the current version as soon as possible. Anyone responsible for maintaining a 3.4 codebase should consider NetHack 3.6.0 commit 612755b.

Additional information related to this advisory, if any, will be made available at

03-Mar-2020 Bug reported.

The NetHack Development Team gratefully acknowledges security researcher David Mendenhall for discovering this issue and for responsibly reporting it.
Revision History:
08-Mar-2020 Initial Version.

Known Bug List
Version 3.6.6
Known Bug Search
Site Map
Old News
Security Issues
Developer Resources
Old Versions
Contact Us

Hosted courtesy of

NetHack is Copyright 1985-2020 by Stichting Mathematisch Centrum and M. Stephenson. See our license for details.
This site is Copyright 1999-2020 by Kenneth Lorber, Kensington, Maryland.