I'm one of the upstream maintainers. We just released 2.2.0-final, which addresses all these and some other internally-discovered issues, including some minor denial-of-service issues with malformed data. (For example, the code could consume large amounts of memory.)
We do compile with -Wformat-security and other warnings enabled. Also, I'd like to correct the inclusion report. There is a test suite. Run "make check" -- ideally with Perl's "prove" binary installed. While we don't consider this a particularly security-sensitive program, we do take it seriously because it serves as a base library for other programs. Any security issue found would be fixed ASAP. -- main inclusion review for openbabel https://bugs.launchpad.net/bugs/236051 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
