The xfburn code isn't checking the return value of fopen() before using it. fopen() is failing here, returning NULL, and then NULL is passed as the stream to fprintf() resulting in the segfault.
I don't see this as being a security issue so I'm going to open this bug up.
Hi Steven - Thanks for reporting this bug!
The xfburn code isn't checking the return value of fopen() before using it. fopen() is failing here, returning NULL, and then NULL is passed as the stream to fprintf() resulting in the segfault.
I don't see this as being a security issue so I'm going to open this bug up.