[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: CVE-2017-14482 - Red Hat Customer Portal
From: |
Ludwig, Mark |
Subject: |
RE: CVE-2017-14482 - Red Hat Customer Portal |
Date: |
Tue, 26 Sep 2017 19:00:02 +0000 |
> From: Philipp Stephani, Tuesday, September 26, 2017 12:46 PM
>
> Viewing an HTML document will never run arbitrary code, let alone delete the
> user's home directory.
> Unlike Emacs, browsers have pretty good sandboxes.
"Never run arbitrary code" + "pretty good sandboxes"?
Maybe they do /now/. Do we have to review the history?
How sure are you that the sandboxing works when you
directly invoke the browser and feed it a local HTML file
on the command line?
By all means, help make Emacs better.
Give it digital certificate technology and a sandbox, if you like.
- Re: CVE-2017-14482 - Red Hat Customer Portal, (continued)
- Re: CVE-2017-14482 - Red Hat Customer Portal, Eli Zaretskii, 2017/09/29
- Message not available
- Re: CVE-2017-14482 - Red Hat Customer Portal, Emanuel Berg, 2017/09/24
- Re: CVE-2017-14482 - Red Hat Customer Portal, Glenn Morris, 2017/09/25
- Re: CVE-2017-14482 - Red Hat Customer Portal, Emanuel Berg, 2017/09/25
- RE: CVE-2017-14482 - Red Hat Customer Portal, Ludwig, Mark, 2017/09/25
- Re: CVE-2017-14482 - Red Hat Customer Portal, Emanuel Berg, 2017/09/26
- RE: CVE-2017-14482 - Red Hat Customer Portal, Ludwig, Mark, 2017/09/26
- Re: CVE-2017-14482 - Red Hat Customer Portal, Philipp Stephani, 2017/09/26
- RE: CVE-2017-14482 - Red Hat Customer Portal,
Ludwig, Mark <=
- Re: CVE-2017-14482 - Red Hat Customer Portal, Eli Zaretskii, 2017/09/29
- Re: CVE-2017-14482 - Red Hat Customer Portal, Eli Zaretskii, 2017/09/29
- Re: CVE-2017-14482 - Red Hat Customer Portal, Narendra Joshi, 2017/09/26
- Re: CVE-2017-14482 - Red Hat Customer Portal, Philipp Stephani, 2017/09/26
- Message not available
- Re: CVE-2017-14482 - Red Hat Customer Portal, Emanuel Berg, 2017/09/24
- Re: CVE-2017-14482 - Red Hat Customer Portal, ken, 2017/09/22
- Re: CVE-2017-14482 - Red Hat Customer Portal, Emanuel Berg, 2017/09/22
- Re: CVE-2017-14482 - Red Hat Customer Portal, Bob Proulx, 2017/09/23
- Message not available
- Re: CVE-2017-14482 - Red Hat Customer Portal, Emanuel Berg, 2017/09/24
- Re: CVE-2017-14482 - Red Hat Customer Portal, Maxim Cournoyer, 2017/09/24