Libraries for loading/parsing/processing common image formats like JPEG, PNG, GIF, TIFF, etc, have a long history of buffer overruns and other security problems. This in turn has been reflected in various exploits for command-line image-viewing tools like xv(1), xloadimage(1), display(1) [ImageMagick], etc.
Do we (OpenBSD) have any image-viewing software that's written to OpenBSD-style security standards? Notably, do we have any image-viewing software that's privilige-separated? (I.e., which does the (dangerous) image parsing/processing in a separate process which is chrooted, sending back bitmaps/pixmaps over a constrained channel to a display process?) ciao, -- -- "Jonathan Thornburg [remove -animal to reply]" <[email protected]> Dept of Astronomy & IUCSS, Indiana University, Bloomington, Indiana, USA "There was of course no way of knowing whether you were being watched at any given moment. How often, or on what system, the Thought Police plugged in on any individual wire was guesswork. It was even conceivable that they watched everybody all the time." -- George Orwell, "1984"
