openmotif, openmotif21 security update

CentOS Errata and Security Advisory CESA-2005:412

OpenMotif provides libraries which implement the Motif industry standard
graphical user interface.

An integer overflow flaw was found in libXpm, which is used to decode XPM
(X PixMap) images. A vulnerable version of this library was
found within OpenMotif. An attacker could create a carefully crafted XPM
file which would cause an application to crash or potentially execute
arbitrary code if opened by a victim. The Common Vulnerabilities and
Exposures project (cve.mitre.org) has assigned the name CAN-2005-0605 to
this issue.

Users of OpenMotif are advised to upgrade to these erratum packages, which
contains a backported security patch to the embedded libXpm library.

Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2005-May/073811.html
https://lists.centos.org/pipermail/centos-announce/2005-May/073817.html
https://lists.centos.org/pipermail/centos-announce/2005-May/073818.html
https://lists.centos.org/pipermail/centos-announce/2005-May/073821.html

Affected packages:
openmotif
openmotif-devel
openmotif21

Upstream details at:
https://access.redhat.com/errata/RHSA-2005:412