| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <200409161359.i8GDxZu7017866@turing-police.cc.vt.edu> From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks@...edu) Subject: [Vmyths.com ALERT] Hysteria predicted for 'JPEG Processor' vulnerability On Wed, 15 Sep 2004 16:34:32 EDT, Barry Fitzgerald said: > Why did this need a Vmyths advisory? > > So far, I haven't read any disinformation in the media regarding this. > A virus can actually be embedded in the file with this vulnerability > (or, any program, really) and the vulnerable programs really can be > exploited using the jpeg files. I don't think this is at all comparible > to an april fools joke or a steganography-using malware implementation > -- they're completely different than this. I read it as "yes, there's a bug, but it's a 'yawn, *another* hole, get to patching *again*' issue rather than 'death of the Internet predicted, film at 11'". -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 226 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20040916/1fa52549/attachment.bin
Powered by blists - more mailing lists