1. Ubuntu Security Notices
  2. USN-8385-1

USN-8385-1: Robocode vulnerabilities

Publication date

4 June 2026

Overview

Several security issues were fixed in Robocode.

Releases

Packages

  • robocode - An engaging and educational programming game

Details

It was discovered that Robocode could be tricked into making network
requests to attacker-controlled systems. An attacker could possibly use
this issue to cause external service interaction, resulting in
information disclosure. This issue only affected Ubuntu 16.04 LTS and
Ubuntu 18.04 LTS. (CVE-2019-10648)

Lim Sim Yee discovered that Robocode did not properly validate file
paths in the CacheCleaner component. An attacker could possibly use this
issue to delete arbitrary files. (CVE-2025-14306)

Lim Sim Yee discovered that Robocode did not securely create temporary
files in the AutoExtract component. An attacker could possibly use this
issue to manipulate temporary files, resulting in arbitrary code
execution. (CVE-2025-14307)

Lim Sim Yee discovered that Robocode did not properly validate data
lengths in...

It was discovered that Robocode could be tricked into making network
requests to attacker-controlled systems. An attacker could possibly use
this issue to cause external service interaction, resulting in
information disclosure. This issue only affected Ubuntu 16.04 LTS and
Ubuntu 18.04 LTS. (CVE-2019-10648)

Lim Sim Yee discovered that Robocode did not properly validate file
paths in the CacheCleaner component. An attacker could possibly use this
issue to delete arbitrary files. (CVE-2025-14306)

Lim Sim Yee discovered that Robocode did not securely create temporary
files in the AutoExtract component. An attacker could possibly use this
issue to manipulate temporary files, resulting in arbitrary code
execution. (CVE-2025-14307)

Lim Sim Yee discovered that Robocode did not properly validate data
lengths in the Buffer class. An attacker could possibly use this issue
to trigger an integer overflow, resulting in arbitrary code execution.
(CVE-2025-14308)

Update instructions

In general, a standard system update will make all the necessary changes.

Learn more about how to get the fixes.

The problem can be corrected by updating your system to the following package versions:

Ubuntu Release Package Version
26.04 LTS resolute robocode –  1.9.3.9-4ubuntu0.26.04.1~esm1  
24.04 LTS noble robocode –  1.9.3.9-3ubuntu0.1~esm1  
22.04 LTS jammy robocode –  1.9.3.9-2ubuntu0.1~esm1  
20.04 LTS focal robocode –  1.9.3.7-1ubuntu0.1~esm1  
18.04 LTS bionic robocode –  1.9.3.1-1ubuntu0.1~esm1  
16.04 LTS xenial robocode –  1.9.2.5-2ubuntu0.1~esm1

Reduce your security exposure

Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.

Get Ubuntu Pro

References

Have additional questions?

Talk to a member of the team ›