Hi, A CVE id has been assigned to this bug: ====================================================== Name: CVE-2009-2286 Status: Candidate URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2286 Reference: MLIST:[oss-security] 20090629 CVE id request: compface Reference: URL:http://www.openwall.com/lists/oss-security/2009/06/29/2 Reference: MLIST:[oss-security] 20090629 Re: CVE id request: compface Reference: URL:http://www.openwall.com/lists/oss-security/2009/06/29/4 Reference: CONFIRM:http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=534973
Buffer overflow in compface 1.5.2 and earlier allows user-assisted attackers to cause a denial of service (crash) via a long declaration in a .xbm file. -- Nico Golde - http://www.ngolde.de - n...@jabber.ccc.de - GPG: 0xA0A0AAAA For security reasons, all text in this mail is double-rot13 encrypted.
pgpLsRbhEXW8w.pgp
Description: PGP signature
