Summary: | app-editors/bluefish can crash X server | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Yuriy Dmitriev <triod> |
Component: | Auditing | Assignee: | Gentoo Security <security> |
Status: | RESOLVED INVALID | ||
Severity: | normal | ||
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- |
Description
Yuriy Dmitriev
2006-09-11 08:06:58 UTC
No Additional Comments Oh, that's really "easily" abused, just have to induce someone to do 10 steps including installing multiple apps... Security doesn't handle such stuff at all AFAIK, should be reassigned to maintainer. is this reproductible for someone else ? I can't reproduce it, but it does cause bluefish to get a very high load, so the best I could think of "security wise" was that it would cause oom killer to go nuts and DoS things. However, this would only really be applicable to a desktop environment, so if you're running mission critical server applications on a desktop system, well yah... So, that's about that :P. What's high load got to do with oom killer, anyway? Besides that, good luck in hunting this one down. Way to many components involved. It might actually be a real issue, but I don't see us having the resources to even remotely track it down :/ Yuriy, do you have an nvidia card ? Closing this one as INVALID for now. Feel free to reopen if you have further information. |