[Evolution] Bug#378057: Format String bug in task description field
Craig Shelley
craig at microtron.org.uk
Wed Jul 12 23:37:19 UTC 2006
Package: evolution
Version: 2.0.4-2
Severity: important
When I put a %s or other format string characters in the Description
field of a task, the preview pane shows garbage.
Putting multiple %s characters in the description crashes evolution, and
it becomes impossible to delete the task.
This bug could be exploitable to cause evolution to execute arbitrary
code.
--
Craig Shelley
EMail: craig at microtron.org.uk
Jabber: shell at jabber.earth.li
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.alioth.debian.org/pipermail/pkg-evolution-maintainers/attachments/20060713/7de30abb/attachment.pgp
More information about the Pkg-evolution-maintainers
mailing list