Third-Party Company Patches Half-Life

By Deane Barker on July 31, 2003

Company patches flaws in ‘Half-Life’ game: How is a software patch newsworthy, you ask? Because it wasn’t issued by the company that made the software. A security company — PivX — had notified Valve that there was a buffer overflow flaw in Half-Life. They finally got sick of waiting for a patch, so they issued their own.

“‘Due to the severity of these vulnerabilities, PivX waited much longer than the industry standard of 30 days for a patch to be created and distributed by the vendor,’ the company said in a statement. ‘However, after 100 days and no patch or fix from Valve, despite repeated inquiries, PivX has decided to (address) these vulnerabilities with our free fix.’”

If you don’t patch it yourself, someone may patch it for you. Now if we could only install patches on other people’s systems ourselves…