Nom du paquet
compface
Date
2009-07-29
Advisory ID
MDVSA-2009:180
Affected versions
MES5 i586 , MES5 x86_64

Problem description

A vulnerability has been found and corrected in compface:

Buffer overflow in compface 1.5.2 and earlier allows user-assisted
attackers to cause a denial of service (crash) via a long declaration
in a .xbm file (CVE-2009-2286).

This update provides fixes for this vulnerability.

Updated packages

MES5 i586

 0ac53ddf157ffc47e317293092cd175d  mes5/i586/compface-1.5.2-5.1mdvmes5.i586.rpm
 82cd156f19070ef71511557020e796a1  mes5/i586/libcompface1-1.5.2-5.1mdvmes5.i586.rpm
 a29610a24e93048a54419e5f97354efa  mes5/i586/libcompface-devel-1.5.2-5.1mdvmes5.i586.rpm 
 d0e83022879901426cf3b57e140a0c82  mes5/SRPMS/compface-1.5.2-5.1mdvmes5.src.rpm

MES5 x86_64

 bcb383f26a7d3faadc167f67e18e5f3d  mes5/x86_64/compface-1.5.2-5.1mdvmes5.x86_64.rpm
 cfebd2fa605473f9f27f619a174726a6  mes5/x86_64/lib64compface1-1.5.2-5.1mdvmes5.x86_64.rpm
 985569b9e26ffc383bb47b0d82322224  mes5/x86_64/lib64compface-devel-1.5.2-5.1mdvmes5.x86_64.rpm 
 d0e83022879901426cf3b57e140a0c82  mes5/SRPMS/compface-1.5.2-5.1mdvmes5.src.rpm

References