Does an open source game from Frozenbubble or Super Tux have any types pf vulnerabilities to worry about like a web browser might or is it safe to just download it, with no worries. As long it’s downloaded from safe repositories?

  • bad_news@lemmy.billiam.net
    link
    fedilink
    arrow-up
    6
    ·
    2 days ago

    Frozen bubble is a joy, and I really don’t see how it’s a big vulnerability. Just don’t give it internet perms (which it shouldn’t need). I guess in theory it makes the device less secure, but in a world where they purposefully leave vulnerabilities in the chips for the cell connection itself, nobody with the resources to do so is going to bother engineering a chain attack utilizing a 20 year old FOSS game installed by .00005% of users.

      • bad_news@lemmy.billiam.net
        link
        fedilink
        arrow-up
        4
        ·
        1 day ago

        Hard to say with an unknown unknown. There’s no way to know what exact vulnerabilities exist or how they could be chained with other exploits. Think of it like not having your brakes promptly serviced. It’s probably fine, but it’s also possible 5% worse breaking leads to a 30 car pileup that causes a fertilizer factory to explode. In all likelihood nothing would happen, worst case, Frozen Bubble introduces an old library, opening you up to a chain of attacks where the attacker totally owns your device, plays the long game, using it to own your home and work networks, and steals your life savings, has you fired, and sends your nudes to all your grammar school teachers. Or something in between.

      • OhYeah@lemmy.dbzer0.com
        link
        fedilink
        arrow-up
        2
        ·
        2 days ago

        Not op but check the permissions of the app and if you’re not comfortable with them don’t use it. As they said you should be fine

  • GolfNovemberUniform@lemmy.ml
    link
    fedilink
    arrow-up
    4
    ·
    2 days ago

    It depends on what vulnerabilities we’re talking about. If these are arbitrary code execution ones, they may be more dangerous in games since that’s not a kind of app most security researchers will look into. But if we’re talking about in-app ones that let the hacker steal your game stats or something (so only the app’s data), it’s definitely not anywhere near as bad as a browser vulnerability because browsers save much more sensitive data. Also a game isn’t something a bad actor would consider the best attack surface but if they do, it might cause a lot of harm.

    • Possibly linux@lemmy.zip
      link
      fedilink
      English
      arrow-up
      4
      ·
      2 days ago

      Web browsers are also a easy target because they pull content from the public internet. They can attack it with just a link.

      • GolfNovemberUniform@lemmy.ml
        link
        fedilink
        arrow-up
        1
        ·
        2 days ago

        Assuming the worst, they might inject ransomware or other highest threat level malware to your system. Though it’s extremely unlikely and the kind of app doesn’t really matter as long as it’s popular.

  • Possibly linux@lemmy.zip
    link
    fedilink
    English
    arrow-up
    3
    arrow-down
    1
    ·
    2 days ago

    Are you joking or being serious?

    The answer is almost most certainly no (you game mostly likely has a low attack surface)