Date:        Mon, 7 Jul 2003 11:54:24 +0200
    From:        Christian Biere <christianbiere@gmx.de>
    Message-ID:  <20030707115424.1da689a4.christianbiere@gmx.de>

  | $ xv "This a so called long filename and it will crash xv because it
  | doesn't give a damn about protecting its buffers so it's nothing but a
  | can full of worms"

That's not a vulnerability, that's just a bug.   Things only become
vulnerabilities when they can be used to achieve something that wouldn't
otherwise be possible.

If xv ever acts upon a filename that it obtains from an image in that
kind of way, then it may be properly listed as a vulnerability - as someone
else can cause code executing as you to do something you didn't intend
(by persuading you to view the bad image).

But being able to crash a program that you run by giving it bogus args,
or being able to convince it to do stupid things on your own behalf,
isn't a vulnerability.

File a regular PR against xv if you want, indicating that it doesn't
bounds check its arg lengths, but nothing is needed in the vulnerabilities
file, and this is certainly not "serious".

kre