Package: zhcon Version: 1:0.2.6-5.2 Severity: important Tags: security
zhcon crashes when a long GGI_DISPLAY environment variable is used with ggi. Probably indicative of a buffer overflow. zhcon is SUID root, so this crash might potentially lead to privilege escalation. I haven't investigated further, so it is possible that this is a non exploitable crash.
