Package: xmp Version: 3.4.0-1.1 Severity: important Tags: security http://www.openwall.com/lists/oss-security/2013/04/22/5
A vulnerability has been reported in libxmp, which can be exploited by malicious people to compromise an application using the library. The vulnerability is caused due to a boundary error in the "get_dsmp"() function (src/loaders/masi_load.c) when parsing MASI files, which can be exploited to cause a buffer overflow. Successful exploitation may allow execution of arbitrary code. --- Henri Salo
signature.asc
Description: Digital signature
