Debian Security Advisory DSA 508-1 – Jaguar discovered a vulnerability in one component of xpcd, a PhotoCD viewer. xpcd-svga, part of xpcd which uses svgalib to display graphics on the console, would copy user-supplied data of arbitrary length into a fixed-size buffer in the pcd_open function.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/33411/dsa-508.txt
Source: https://packetstormsecurity.com/files/33411/dsa-508.txt.html