Bug#582146: /usr/lib/jvm/java-6-sun-1.6.0.20/jre/lib/i386/libnpjp2.so: browser plugin reporting of system fonts is a privacy leak
Torsten Werner
twerner at debian.org
Wed Jul 28 13:26:30 UTC 2010
tags 582146 + help
thanks
On Thu, May 27, 2010 at 10:56 AM, Thiemo Nagel
<thiemo.nagel at googlemail.com> wrote:
> Sure, you're right. I can think of two malicious uses: Either the font
> list can be used as a kind of cookie, aggregating information about the user
> across different web sites. Or a user may be tricked into installing a font
> with a customised name which then may be used to identify that user
> anywhere.
Yes, I agree that this bug should be fixed. May you report the bug to
the upstream bug tracking system, please, because you know the details
better than me?
Thanks,
Torsten
More information about the pkg-java-maintainers
mailing list