Bug#435385: iceape browser leaks TCP sockets to children

Alexander Sack asac at debian.org
Tue Jul 31 20:06:02 UTC 2007


On Tue, Jul 31, 2007 at 11:43:23PM +1200, Jasen Betts wrote:
> Package: iceape
> Version: 1.0.9-0etch1
> Severity: minor
> 
> 
> dunno if this is a security risk but after downloading a PDF and
> selecting open with /usr/bin/xpdf  iceape passes TCP sockets to the
> instance of xpdf it spawns to open the downloaded file.
> 

Maybe firefox just opened pdf-reader with url ... instead of
predownloaded file?

 - Alexander
-- 
 GPG messages preferred.    |  .''`.  ** Debian GNU/Linux **
 Alexander Sack             | : :' :      The  universal
 asac at debian.org            | `. `'      Operating System
 http://www.asoftsite.org/  |   `-    http://www.debian.org/




More information about the pkg-mozilla-maintainers mailing list