A heap-based buffer overflow was found in GNU ed that allowed context-dependent or user-assisted attackers to execute arbitrary code via a long filename (CVE-2008-3916).
This update provides GNU ed 1.0, which is not vulnerable to this issue.
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.