On Mon, 24 Jan 2005 12:05:50 +0000, Ian Hastie <[EMAIL PROTECTED]> wrote: > On Monday 24 January 2005 10:31, Xavier-Francois Roblot wrote: > > So it is for a security issue that we cannot access the bug. > > Supposedly. > > > On the > > other hand, it is not difficult to have a look at the (very short) > > corresponding patch: > > > > /usr/portage/mail-client/evolution/files/evolution-2-CAN-2005-0102.patch > > > > from which one can deduce what the bug was ;o) > > As you imply it doesn't work very well does it. Looks like a buffer overflow > of some kind. The patch looks kind of unpleasantly hackish to me. The only > advantage I can think of is that it doesn't need to know the limitations of > the hardware or compiler. It just detects the condition that allows the > overflow to take place. >
Whatever. The practice of secreting fixes is still complete horse feathers, and it reeks to high heaven. -- Collins -- [email protected] mailing list
