Posted by Berend-Jan Wever on Dec 09

Since November I have been releasing details on all vulnerabilities I
found that I have not released before. This is the twenty-eighth entry
in the series. This information is available in more detail on my blog
at http://blog.skylined.nl/20161208001.html. There you can find a repro
that triggered this issue in addition to the information below.

Today’s release is again not very interesting, because it also was one
of the first bugs I found…