CVE-2009-2286

Name of the Vulnerable Software and Affected Versions compface versions 1.5.2 and earlier

Description A buffer overflow issue allows user-assisted attackers to cause a denial of service, resulting in a crash, by providing a long declaration in a .xbm file. This issue is specific to certain distributions of compface that have applied a particular patch.

Recommendations For compface versions 1.5.2 and earlier, consider avoiding the use of .xbm files with long declarations until a fix is available. As a temporary workaround, restrict the processing of .xbm files to minimize the risk of exploitation.