This bug is rather likely to be exploitable for executing arbitrary code. There also appear to be a bunch of places where buffer overflows are possible.
This package should probably be removed from the archive, as it is dead upstream and likely to be riddled with security bugs if this is any indicator. Unfortunately it is in stable already. Ben. -- Ben Hutchings If God had intended Man to program, we'd have been born with serial I/O ports.
signature.asc
Description: This is a digitally signed message part