Steve Kemp discovered a buffer overflow in xpcd-svga which can be
triggered by a long HOME environment variable This vulnerability
could be exploited by a local attacker to gain root privileges
For the stable distribution (woody) this problem has been fixed in
version 208-8woody1
For the unstable distribution (sid) this problem will be fixed so ...
source: wwwsecurityfocuscom/bid/8370/info
A problem in the handling of long strings in environment variables by xpcd may result in a buffer overflow condition This may allow an attacker to gain unauthorized access to system resources
/****************************************************************************
* xpcd 208 [latest] e ...