Overflow bug

Anderz Olsson anderz.olsson at gmail.com
Thu Nov 8 22:01:21 EST 2012


Ok, I will try to reproduce it. I said that it could be a security
issue (because there is a bug), but that cannot be known if/when the
bug is identified. I mean, if there is a bug but you don't know why
the bug is a bug, how can you know if there is a concern regarding
security.

Text loss could be defined as a security issue to me.

2012/11/9 Mark Doliner <mark at kingant.net>:
> On Thu, Nov 8, 2012 at 6:24 PM, Anderz Olsson <anderz.olsson at gmail.com> wrote:
>> * I was able to select all text (miy installation didn't freeze though).
>> * I then deleted all text (with the button called backspace).
>> * Then all history was lost without me closing the window (i don't
>> log) IM. But I saw it before I selected all the text in my text box
>> (like I'd have selected the chat history too, but that isn't possible,
>> is it?)
>> * So there is a bug.
>>
>> Or is it not a bug?
>
> If what you're describing is true, then yeah, that sounds like a bug.
> Changing the text in the text entry field (the bottom half of the IM
> window) should not have any affect on the text in the history (the top
> half of the IM window).  Are you able to reproduce this problem?  I
> haven't been able to reproduce it.
>
> And yeah, for what it's worth this doesn't seem like a security issue
> to me.  A security issue would be any bug that can be exploited by a
> remote attacker that either prevents you from using Pidgin (e.g.
> remote crash) or causes harm to your computer (e.g. remote code
> execution).



More information about the Support mailing list