Oval Definition:oval:com.redhat.rhsa:def:20050412
Revision Date:2005-05-11Version:502
Title:RHSA-2005:412: openmotif security update (Moderate)
Description:OpenMotif provides libraries which implement the Motif industry standard graphical user interface.

An integer overflow flaw was found in libXpm, which is used to decode XPM (X PixMap) images. A vulnerable version of this library was found within OpenMotif. An attacker could create a carefully crafted XPM file which would cause an application to crash or potentially execute arbitrary code if opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-0605 to this issue.

Users of OpenMotif are advised to upgrade to these erratum packages, which contains a backported security patch to the embedded libXpm library.
Family:unixClass:patch
Status:Reference(s):CVE-2005-0605
RHSA-2005:412-01
Platform(s):Red Hat Enterprise Linux 3
Red Hat Enterprise Linux 4
Product(s):
Definition Synopsis
  • Release Information
  • Red Hat Enterprise Linux 3 is installed
  • AND
  • openmotif21 is earlier than 0:2.1.30-9.RHEL3.6
  • AND openmotif21 is signed with Red Hat master key
  • openmotif-devel is earlier than 0:2.2.3-5.RHEL3.2
  • AND openmotif-devel is signed with Red Hat master key
  • openmotif is earlier than 0:2.2.3-5.RHEL3.2
  • AND openmotif is signed with Red Hat master key
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • openmotif21 is earlier than 0:2.1.30-11.RHEL4.4
  • AND openmotif21 is signed with Red Hat master key
  • openmotif-devel is earlier than 0:2.2.3-9.RHEL4.1
  • AND openmotif-devel is signed with Red Hat master key
  • openmotif is earlier than 0:2.2.3-9.RHEL4.1
  • AND openmotif is signed with Red Hat master key
    • BACK