FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

xpcd -- buffer overflow

Affected packages
0 < xpcd

Details

VuXML ID d337b206-200f-11dc-a197-0011098b2f36
Discovery 2005-02-11
Entry 2007-06-21

Debian Project reports:

Erik Sjolund discovered a buffer overflow in pcdsvgaview, an SVGA PhotoCD viewer. xpcd-svga is part of xpcd and uses svgalib to display graphics on the Linux console for which root permissions are required. A malicious user could overflow a fixed-size buffer and may cause the program to execute arbitrary code with elevated privileges.

References

Bugtraq ID 12523
CVE Name CVE-2005-0074
URL http://www.debian.org/security/2005/dsa-676