iDEFENSE has reported a buffer overflow in the PSD (Photoshop Document) handling code. I'm attaching the iDEFENSE advisory. The embargo date is currently 2005-01-14 (today) but a request has been made to move this date.
Created attachment 109782 [details] iDEFENSE advisory
This issue should also affect RHEL2.1
Public http://www.idefense.com/application/poi/display?id=184&type=vulnerabilities
Created attachment 109881 [details] Patch from upstream This is the upstream patch. There is a little bit of cruft in here and it will need to be cleaned up.
An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on the solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHSA-2005-070.html