Bruno Haible writes:
> 1) It's a security problem if a program's binary (+ associated shared
> libraries)
>somewhere implements a printf with %n, even without actively using it.
>Because an attacker can piece together a format string in memory and call
>that printf function; this the
[Redirecting to bug-gnulib. This discussion has nothing to do with Emacs any
more.]
I wrote:
> > Rationale: I cannot guarantee that Gnulib will be able to support %n
> > in the long run. The "security-aware community" are filing CVEs here and
> > there; %n is among their targets (it has already be
