From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: Stefan Monnier Newsgroups: gmane.emacs.devel Subject: Re: C file recoginzed as image file Date: Sun, 14 Jan 2007 20:14:43 -0500 Message-ID: References: <20070114025247.GB2401@kobe.laptop> NNTP-Posting-Host: lo.gmane.org Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Trace: sea.gmane.org 1168887166 18251 80.91.229.12 (15 Jan 2007 18:52:46 GMT) X-Complaints-To: usenet@sea.gmane.org NNTP-Posting-Date: Mon, 15 Jan 2007 18:52:46 +0000 (UTC) Cc: Giorgos Keramidas , dooglus@gmail.com, c.a.rendle@gmail.com, Reiner.Steib@gmx.de, emacs-devel@gnu.org Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Mon Jan 15 19:52:42 2007 Return-path: Envelope-to: ged-emacs-devel@m.gmane.org Original-Received: from lists.gnu.org ([199.232.76.165]) by lo.gmane.org with esmtp (Exim 4.50) id 1H6Vch-0003e4-LQ for ged-emacs-devel@m.gmane.org; Mon, 15 Jan 2007 18:27:55 +0100 Original-Received: from localhost ([127.0.0.1] helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1H6GR9-0001OG-5H for ged-emacs-devel@m.gmane.org; Sun, 14 Jan 2007 20:14:59 -0500 Original-Received: from mailman by lists.gnu.org with tmda-scanned (Exim 4.43) id 1H6GQx-0001NE-1k for emacs-devel@gnu.org; Sun, 14 Jan 2007 20:14:47 -0500 Original-Received: from exim by lists.gnu.org with spam-scanned (Exim 4.43) id 1H6GQw-0001Ma-6d for emacs-devel@gnu.org; Sun, 14 Jan 2007 20:14:46 -0500 Original-Received: from [199.232.76.173] (helo=monty-python.gnu.org) by lists.gnu.org with esmtp (Exim 4.43) id 1H6GQw-0001MV-1o for emacs-devel@gnu.org; Sun, 14 Jan 2007 20:14:46 -0500 Original-Received: from [209.226.175.93] (helo=tomts36-srv.bellnexxia.net) by monty-python.gnu.org with esmtp (Exim 4.52) id 1H6GQu-0006Vs-SU; Sun, 14 Jan 2007 20:14:45 -0500 Original-Received: from pastel.home ([70.55.83.78]) by tomts36-srv.bellnexxia.net (InterMail vM.5.01.06.13 201-253-122-130-113-20050324) with ESMTP id <20070115011444.IVNS1862.tomts36-srv.bellnexxia.net@pastel.home>; Sun, 14 Jan 2007 20:14:44 -0500 Original-Received: by pastel.home (Postfix, from userid 20848) id 3DFCF8279; Sun, 14 Jan 2007 20:14:43 -0500 (EST) Original-To: rms@gnu.org In-Reply-To: (Richard Stallman's message of "Sun\, 14 Jan 2007 18\:23\:09 -0500") User-Agent: Gnus/5.11 (Gnus v5.11) Emacs/22.0.92 (gnu/linux) X-BeenThere: emacs-devel@gnu.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Emacs development discussions." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Original-Sender: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.devel:65212 Archived-At: > There isn't much Emacs can do to protect against problems with > potentially buggy versions of the image libraries, though. We > can make Emacs *prompt* the user when something looks ``odd'', > but how do we define ``odd''? > Each image format has a standard. If the format does not allow > arbitrary programs, then it is straightforward (though perhaps > substantial work) to validate an image completely. The bug in the lib may be triggered by a valid file (typically: valid but with some parameters much larger than expected). There's no evidence that our validation code wouldn't be itself vulnerable to various attacks (although writing it in a strongly typed language like Lisp would eliminate a whole bunch of potential security holes, compared to C, but note that Elisp is not bug-free either). Stefan