Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Thu, 17 Sep 2015 11:08:35 -0500
From: Mark Felder <feld@...d.me>
To: oss-security@...ts.openwall.com
Subject: Re: CVE-2015-0854: Insecure use of system() in shutter



On Sun, Sep 13, 2015, at 11:31, Luke Faraone wrote:
> 
> This bug has existed since (at least) 0.85.1, and although a patch is
> available a fixed version has not been released.
> 

The xdg functions were not introduced until 0.80, so that is the oldest
affected version.



-- 
  Mark Felder
  feld@...d.me

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.