On Fri, Mar 23, 2018 at 10:39 AM, Yann Ylavic <[email protected]> wrote: > On Fri, Mar 23, 2018 at 4:37 PM, William A Rowe Jr <[email protected]> > wrote: >> On Fri, Mar 23, 2018 at 8:18 AM, Yann Ylavic <[email protected]> wrote: >>> Not sure it helps its readability (not worse though), at least it >>> helps performances. >>> >>> For now the patches uses a big "goto" to preserve code (AFAP), that >>> could easily be turned into a do {} while. >>> >>> WDYT? >> >> Did you just reintroduce the fnmatch recursion exploit? > > Well, maybe :p > What was it exactly?
https://nvd.nist.gov/vuln/detail/CVE-2011-0419
