[prev in list] [next in list] [prev in thread] [next in thread] 

List:       freedesktop-xorg-devel
Subject:    No subject
From:       bogus () does ! not ! exist ! com ()
Date:       2009-04-21 9:21:45
Message-ID: mailman.0.1240307643.4119.xorg-devel () lists ! x ! org
[Download RAW message or body]

If the server is not allowed to touch or look at the type, it can't really
check for correctness. Even if you did, there's the dange of breaking apps.

> My thinking goes like: unenforced solution -> breakage in some client ->  
>  CVE-2011-0815

Meh. The client should simply treat properties like user input - if you don't
check it, the big boys will laugh at you.

Cheers,
  Peter

[prev in list] [next in list] [prev in thread] [next in thread]