Gentoo Linux Security Advisory GLSA 200706-03 - Arnaud Giersch discovered that the add_filename_to_string() function in file intl/gettext/loadmsgcat.c uses an untrusted relative path, allowing for a format string attack with a malicious .po file. Versions less than 0.11.2-r1 are affected.
8d7e63c6ab6f0de085de5c4192022d277d750df211de20f98ce2f25dfddd2f7e
Ubuntu Security Notice 457-1 - Arnaud Giersch discovered that elinks incorrectly attempted to load gettext catalogs from a relative path. If a user were tricked into running elinks from a specific directory, a local attacker could execute code with user privileges.
aaa3301f0eeb94e00a7e2d527b6fae6f94f1ffd813a75ddbbb19419df30a4256