I cannot reproduce this on any of the linked packages. Have you seen
actual crashes?
** Changed in: gimp (Ubuntu)
Status: New = Invalid
** Changed in: firefox (Ubuntu)
Status: New = Invalid
** Changed in: firefox-3.0 (Ubuntu)
Status: New = Invalid
** Changed in: evince
On Fri, Aug 1, 2008 at 05:01, Kees Cook wrote:
I cannot reproduce this on any of the linked packages. Have you seen
actual crashes?
No, I didn't test it at all because I've got only one machine and it's
in production use right now. I will post an update if I can reproduce
it. I've also posted
** Description changed:
- There's an exploit published on July 8, 2008 at
+ There's an proof-of-concept exploit published on July 8, 2008 at
http://www.milw0rm.com/exploits/6029 that says:
Malicious SVG file DoS
The following applications were tested in their latest revisions:
** Description changed:
- There's an proof-of-concept exploit published on July 8, 2008 at
+ There's an alleged proof-of-concept exploit published on July 8, 2008 at
http://www.milw0rm.com/exploits/6029 that says:
Malicious SVG file DoS
The following applications were tested in their