July 10, 2001

Red Hat: xloadimage buffer overflow

Author: JT Smith

From LinuxSecurity.com: "These updated packages fix a buffer overflow in the
faces reader. This is normally not a security problem; however, xloadimage
is called by the 'plugger' program from inside Netscape to handle some
image types. Hence, a remote site could cause arbitrary code to be executed as
the user running Netscape. It is recommended that users of Netscape
and plugger update to the fixed xloadimage packages."


  • Linux
Click Here!