There's now a test suite of fuzzed archive files to run past decompression tools, to see how they handle it

https://www.cert.fi/haavoittuvuudet/joint-advisory-archive-formats.html

We may not be vulnerable to buffer overflows, but we should still test for bad files and reject them.


--
Steve Loughran                  http://www.1060.org/blogxter/publish/5
Author: Ant in Action           http://antbook.org/

---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Reply via email to