Patches is attached. This fixes the bug for all three methods and moves the exploit to the test directory.
** Attachment added: "Fixes bugs and creates test." http://launchpadlibrarian.net/23404792/xdg-mime_fixes_and_test.patch ** Visibility changed to: Public -- xdg-utils incorrectly parses output, allowing arbitrary text injection https://bugs.launchpad.net/bugs/335643 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs