From ${UR}: libgedit.a in GNOME gedit through 3.22.1 allows remote attackers to cause a denial of service (CPU consumption) via a file that begins with many '\0' characters. CVE Details:(https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-14108) @maintainer(s), issue seems unknown to upstream at this time. Daj Uan (jmbailey/mbailey_j) Gentoo Security Padawan
Update: @maintainer(s), see $URL for details. @security, according to: https://wiki.gnome.org/Apps/Gedit/ReportingBugs this type of bug is expected behavior.