Package: zsnes Severity: important Tags: security X-Debbugs-CC: secur...@debian.org, sergio_...@yahoo.com.br
According to this Youtube video and forum post, there are at least 3 vulnerabilities in zsnes that allow ROMs to escape the zsnes emulator and execute arbitrary code on the host running zsnes. The known issues will be fixed in 1.52 but there may be more issues. This may or may not be related to the cppcheck warnings from bug #610313. https://www.youtube.com/watch?v=Q3SOYneC7mU http://www.smwcentral.net/?p=viewthread&t=79058 https://bugs.debian.org/610313 -- bye, pabs https://wiki.debian.org/PaulWise
signature.asc
Description: This is a digitally signed message part
