Fwd: xbl vulnerabilty

[<auto94042 () hushmail com>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


shy jo and debian team not give me the thanks for the work i do for them
to protet cutsomers _. so i forward the privilige corespond between me
and shy jo

i must do this one becuase everybody know i work for the prop, other
guy make the dough

- ----- Forwarded Message from auto94042 () hushmail com -----
holo joey heesa

xbl becoemes one of my fave games in the whole collect, it is like backward
tetris -> haha tetrass!, but i am very trouble by something i see :

bl.c:
if ( strcmp(argv[i],"-display")==0 )
           strcpy(bl.opt.displayname,argv[i+1]) ;

this guy -
http://ftp.debian.org/debian/pool/main/x/xbl/xbl_1.0k-5.diff.gz

does not to fix it ! !@

it makes for a monkey biz like this one :

[user@localhost]$ /usr/X11R6/bin/xbl -display `perl -e 'print "A" x 1500'`
Segmentation fault

then some jokeroo make spoof of high score file for all the game with
sgid game acess! i work hard for the score buddy

maybe this just an overseer in the diff or it fix it somewhere else but
i thohght i be on the safe side and tell the one who take care of  xbl
X BLOCKOUT . if i make a mistake please be on the side of honest and
tell me so.
-----BEGIN PGP SIGNATURE-----
Note: This signature can be verified at https://www.hushtools.com/verify
Version: Hush 2.3

wkYEARECAAYFAj8LlTwACgkQarKSBij8yIJt7QCeLwAQbeVeT9qJNF8onLpm989xxR0A
nitcsy4MrkFEVRIksOsFPEWh4vY4
=taqz
-----END PGP SIGNATURE-----




Concerned about your privacy? Follow this link to get
FREE encrypted email: https://www.hushmail.com/?l=2

Free, ultra-private instant messaging with Hush Messenger
https://www.hushmail.com/services.php?subloc=messenger&l=434

Promote security and make money with the Hushmail Affiliate Program: 
https://www.hushmail.com/about.php?subloc=affiliate&l=427
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html