Debian Security Advisory 1432-1 - Alin Rad Pop discovered that link-grammar, Carnegie Mellon University's link grammar parser for English, performed insufficient validation within its tokenizer, which could allow a malicious input file to execute arbitrary code.
60c1d182eef100bbd8eefe2b8fb598a1d96dcc4566cb9cdce8fda2c91d3d29fe