Bug#734746: flite: CVE-2014-0027
* Paul Gevers:
> I see that you tagged the above issue in the flite package as minor. Do
> you consider this issue severe enough for a security update in squeeze
> and wheezy? I am more than willing to provide the update, even via a
> (|o)pu, but is that considered worth the effort?
I couldn't reach this code via speech-dispatcher (with an active flite
module) or any other way (admittedly I tried only on Fedora). If this
function can be called while using desktop accessibility tools, we
should probably fix it, otherwise, it does not appear necessary.
Reply to: