Re: Percent sign in message

emacs-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Percent sign in message

From:	David Kastrup
Subject:	Re: Percent sign in message
Date:	Tue, 19 Sep 2006 23:49:25 +0200
User-agent:	Gnus/5.11 (Gnus v5.11) Emacs/22.0.50 (gnu/linux)

"Stuart D. Herring" <address@hidden> writes:

>> I'd want to mention that format string vulnerabilities are a common
>> attack vector for viruses.  They will not likely be exploitable in
>> Elisp, but it shows that they are not rare among programmers (indeed,
>> one such case prompted the release of Emacs 21.4), and could cause
>> weird effects.
>
> This is off-topic, but what was the case that prompted 21.4?  I've never
> seen it described.

Well, the diff is short enough.  A format string vulnerability in the
movemail executable.

-- 
David Kastrup, Kriemhildstr. 15, 44793 Bochum

[Prev in Thread]

Current Thread

[Next in Thread]

Re: Percent sign in message, (continued)

Prev by Date: Re: small batch of important allout patches
Next by Date: Re: GNU Emacs 22.0.50 fails to find ä in different ISO Latin encodings
Previous by thread: Re: Percent sign in message
Next by thread: discrepancy between read-key-sequence and manual
Index(es):
- Date
- Thread