Bug#838960: denial of service with crafted id3v2 tags in all mpg123 versions since 0.60

* Thomas Orgis: > Am Tue, 27 Sep 2016 10:27:04 +0100 > schrieb James Cowgill : > >> Does this have a CVE ID? If not it should get one. > > I wondered about that. At the moment I just acted on the bug report and > pushed the fix. I have to personal experience with the CVE procedure. > In the past,

Re: inquery about "GPL with commercial exception"

* Ben Finney: > As an interesting point, GPLv3 is even better for this: it has a clause > (GPLv3 §7) that explicitly grants the recipient the freedom to ignore > the offending additional restriction, and to strip that restriction from > the terms when they redistribute the work. It's somewhat dou