user/compface: CVE-2009-2286: crash with long .xbm file
Bugzilla ID | 112 |
Alias(es) | CVE-2009-2286 |
Reporter | Max Rees (sroracle) |
Assignee | Max Rees (sroracle) |
Reported | 2019-07-24 13:59:28 -0500 |
Modified | 2019-07-24 14:15:35 -0500 |
Status | RESOLVED NOTABUG |
Version | 1.0-BETA3 |
Hardware | Adélie Linux / All |
Importance | --- / normal |
URL | https://nvd.nist.gov/vuln/detail/CVE-2009-2286 |
Description
Buffer overflow in compface 1.5.2 and earlier allows user-assisted
attackers to cause a denial of service (crash) via a long declaration
in a .xbm file. NOTE: this issue only affects compface on
distributions that used a certain patch.
We do not apply the patch in question (enhanced XBM functionality).