tags 417789 security thanks On Wed, Apr 04, 2007 at 08:04:52PM +0300, Eddy Petrișor wrote:
> > I tagged this bug as grave+security because it can be used to make > > elinks load any corrupted file, and possibly execute arbitrary code. > How? Those are only strings. Nothing is executed from po/mo/gmo files. You've audited the code and proven that the segfault in elinks2 can't be exploited into an arbitrary code execution bug? -- Steve Langasek Give me a lever long enough and a Free OS Debian Developer to set it on, and I can move the world. [EMAIL PROTECTED] http://www.debian.org/