Comment 16 for bug 692483

FWIW, I think the compiler flags[1] will reduce this vulnerability from being exploitable to only being a denial of service, but additional study would be needed.

[1] https://wiki.ubuntu.com/CompilerFlags