Bug#792420: zsnes: emulator escape vulnerability
Paul Wise
pabs at debian.org
Wed Jul 15 03:16:57 UTC 2015
On Tue, 2015-07-14 at 18:57 +0200, Etienne Millon wrote:
> While neither the exploit code nor a fix is out, I believe that the
> best course of action is indeed to write a patch for #610313.
Sergio confirmed with the author that the issues are not in the C code
but in the assembly, from the #debian-games IRC channel:
<sergio-br2> <Alcaro> not cppcheck, that's for sure, these are all in assembly.
> It may also be possible that due to hardening patches, this bug is not
> exploitable in Debian.
Seems unlikely given the above.
--
bye,
pabs
https://wiki.debian.org/PaulWise
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: This is a digitally signed message part
URL: <http://lists.alioth.debian.org/pipermail/pkg-games-devel/attachments/20150715/cf9e4c22/attachment-0001.sig>
More information about the Pkg-games-devel
mailing list