MDVSA-2009:180
- Package name
- compface
- Date
- 2009-07-29
- Advisory ID
- MDVSA-2009:180
- Affected versions
- MES5 i586 , MES5 x86_64
Problem description
A vulnerability has been found and corrected in compface:
Buffer overflow in compface 1.5.2 and earlier allows user-assisted
attackers to cause a denial of service (crash) via a long declaration
in a .xbm file (CVE-2009-2286).
This update provides fixes for this vulnerability.
Updated packages
MES5 i586
0ac53ddf157ffc47e317293092cd175d mes5/i586/compface-1.5.2-5.1mdvmes5.i586.rpm 82cd156f19070ef71511557020e796a1 mes5/i586/libcompface1-1.5.2-5.1mdvmes5.i586.rpm a29610a24e93048a54419e5f97354efa mes5/i586/libcompface-devel-1.5.2-5.1mdvmes5.i586.rpm d0e83022879901426cf3b57e140a0c82 mes5/SRPMS/compface-1.5.2-5.1mdvmes5.src.rpm
MES5 x86_64
bcb383f26a7d3faadc167f67e18e5f3d mes5/x86_64/compface-1.5.2-5.1mdvmes5.x86_64.rpm cfebd2fa605473f9f27f619a174726a6 mes5/x86_64/lib64compface1-1.5.2-5.1mdvmes5.x86_64.rpm 985569b9e26ffc383bb47b0d82322224 mes5/x86_64/lib64compface-devel-1.5.2-5.1mdvmes5.x86_64.rpm d0e83022879901426cf3b57e140a0c82 mes5/SRPMS/compface-1.5.2-5.1mdvmes5.src.rpm