On Wed, Nov 18, 2009 at 10:36:20PM +0000, Tim Waugh wrote:
On Wed, 2009-11-18 at 13:22 -0500, Simo Sorce wrote:
> I would almost consider it a security vulnerability and ask for a CVE to
> be issued.
It certainly seems like an easy path to a denial of service: just
install everything and run the machine out of disk space.
org.freedesktop.packagekit.system-network-proxy-configure also seems
scary to me.