Thomas Janssen wrote:
> Ah, thanks. I did just recall the stream analyzer problem, but didn't
> know what exactly happened. That explains it.
Of course, the fact that the GZip analyzer crashed on the (from its POV)
invalid input is a bad sign, this appears to be a DoS vulnerability or
worse.
Strigi analyzers seem quite crash-prone to me, not very confidence-inspiring
for something which can run on untrusted (e.g. downloaded from some web
page) files.
Kevin Kofler
