This is probably of interest to the list.

PS: no credit goes to me, I'm merely subscribed to oss-security@

-- 
Adrien Nader