This bug works every single time on any of the game modes mentioned above, as well as others I am sure.
The exploit involves some sort of buffer overflow.
Use of the exploit will cause the player's game to crash and will instantly crash the server it is used on.
Worse, players will often fail to get the "no message received" and will continue playing until they come across another player stuck running in place and realize that side chat has stopped, and they cannot interact with in game objects such as vehicles or loot.
This exploit does not work on epoch mod because epoch mod has removed the "grab" prompt.
This exploit was used on my exile server two days ago and yesterday it was used on pretty much every single major exile server.
Description
Description
Details
Details
- Legacy ID
- 2321114465
- Severity
- None
- Resolution
- Fixed
- Reproducibility
- Always
- Operating System
- Windows 7
- Category
- Server
Steps To Reproduce
A player with a backpack, picks up another backpack and places it inside of their backpack (or buys one from a trader in certain game modes).
Then, the player sets their backpack on the ground (with the second backpack still inside).
Then, they double click the exterior backpack which shows them the contents.
They right click the interior backpack which attempts, but fails, to place it onto their backpack slot.
They exit their inventory completely and use the "grab" scroll option to grab the exterior backpack.
Their game will immediately freeze up and the server will crash.
Additional Information
I tried to bring this bug to the attention of the exile developers, but they didn't seem to buy it.
This video was an intitial test of the bug on our test server after the player had brought it to our attention. At the time, we made several incorrect assumptions regarding the limitations of the bug. It does not matter what size, color, or type the backpacks are.
https://youtu.be/L8YjJi3o0xg
Event Timeline
Comment Actions
My buddy asked me to add this to the ticket, so here goes. It is copied and pasted from teamspeak chat, so bear with me please:
...but i know what causes the buffer overflow
https://community.bistudio.com/wiki/BIS_fnc_saveInventory
https://community.bistudio.com/wiki/BIS_fnc_loadInventory
the way that these functions are instantiated withing the missions
causes the inventory of one bag to be listed in another
when you try and remove the bag outta the bag im not too sure what happens but that sets it up im pretty sure
i think thats the save inventory
function
then when you grab it the way the loadInventory is pushed to the stack is what causes the fatal overflow
Comment Actions
Haven't heard anything all day... not a question... not an acknowledgement... I'm not saying this is the case... but if the plan is just to ignore this and hope people don't figure it out... well, you're a little late. I know of a couple people that also heard about this and they've been pretty much constantly crashing Altis Life servers since they heard about it. They think it is hilarious. They plan to publish this on Monday-ish.
I talked to them and pointed out that it is obviously the weekend, and you are probably not going to look at this until monday.
Comment Actions
Ok... well... sorry... I tried... they published it anyways... http://pastebin.com/BPzqXK56
Comment Actions
Is there any update on this? I've heard that it was going to be fixed in 1.52... but it's Wednesday now and I haven't heard anyone say anything about the release for that patch.
Comment Actions
YES!!! ARE YOU KIDDING ME!?!?!? DO YOU GUYS TALK TO EACH OTHER??? ASK DWARDEN WHAT HAPPENED TO ALL OF THE EXILE SERVERS LAST WEEK! ASK ANY OF THE ALTIS LIFE SERVERS WHAT HAS BEEN HAPPENING TO THEM!
Comment Actions
I had asked you about reproducibility in current DEV which was released today, and your answer is about some state in the past.. well guy, I think we have a little misunderstanding here. And just by the way.. as I can see you prefer offence instead of a constructive debate. If I can offer you my two cents, this is not a good way how to ensure that people will react on your wishes and recommends in the future
best regards
japapatramtara
Comment Actions
you said that this should "already be fixed since DEV 132618"
First... I don't have any way of knowing when past DEV branch releases happened.
Second, yes I am able to reproduce them in the current 1.50 game... which is the version that matters to your players. I mentioned in my previous comment that I had heard it was going to be fixed when 1.52 dropped, but that still hasn't happened yet.
If you could simply confirm that it has been fixed in 1.52, and possibly give some sort of expected release time frame for that patch, that would answer my question.