It's not actually round 2, but more like round 5 or something, because Chris has been publishing an awful lot of these: https://scarybeastsecurity.blogspot.com/2016/12/redux-compromising-linux-using-snes.html He shows how to exploit tracker-extract (hopefully mitigated by the new seccomp sandbox, thanks Carlos!), gnome-video-thumbnailer, and totem itself. Guess these are just going to keep on coming. It's actually very refreshing to know that somebody besides the bad guys is finally looking at our code.... Michael _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
