oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: CVE id request: compface

From: Tomas Hoger <thoger () redhat com>
Date: Mon, 29 Jun 2009 16:25:53 +0200
On Mon, 29 Jun 2009 13:48:31 +0200 Nico Golde
<oss-security+ml () ngolde de> wrote:


there is a buffer overflow in compface:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=534973
http://milw0rm.org/exploits/8982


It seems that Fedora compface packages contain this patch since the
first import to Fedora:

http://cvs.fedoraproject.org/viewvc/rpms/compface/devel/compface-1.5.2-stack-smashing.patch

HTH

-- 
Tomas Hoger / Red Hat Security Response Team
Previous By Date Next
Previous By Thread Next

Current thread: