Date: Thu, 17 Sep 2015 11:08:35 -0500 From: Mark Felder <feld@...d.me> To: oss-security@...ts.openwall.com Subject: Re: CVE-2015-0854: Insecure use of system() in shutter On Sun, Sep 13, 2015, at 11:31, Luke Faraone wrote: > > This bug has existed since (at least) 0.85.1, and although a patch is > available a fixed version has not been released. > The xdg functions were not introduced until 0.80, so that is the oldest affected version. -- Mark Felder feld@...d.me
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.