Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
x.org libxpm vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2022-4883
A flaw was found in libXpm. When processing files with .Z or .gz extensions, the library calls external programs to compress and uncompress files, relying on the PATH environment variable to find these programs, which could allow a malicious user to execute other programs by mani...
X.org Libxpm
7.5
CVSSv3
CVE-2022-46285
A flaw was found in libXpm. This issue occurs when parsing a file with a comment not closed; the end-of-file condition will not be detected, leading to an infinite loop and resulting in a Denial of Service in the application linked to the library.
X.org Libxpm
7.5
CVSSv3
CVE-2022-44617
A flaw was found in libXpm. When processing a file with width of 0 and a very large height, some parser functions will be called repeatedly and can lead to an infinite loop, resulting in a Denial of Service in the application linked to the library.
X.org Libxpm
5.5
CVSSv3
CVE-2023-43788
A vulnerability was found in libXpm due to a boundary condition within the XpmCreateXpmImageFromBuffer() function. This flaw allows a local malicious user to trigger an out-of-bounds read error and read the contents of memory on the system.
X.org Libxpm
Fedoraproject Fedora 37
Fedoraproject Fedora 38
Fedoraproject Fedora 39
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux 9.0
5.5
CVSSv3
CVE-2023-43786
A vulnerability was found in libX11 due to an infinite loop within the PutSubImage() function. This flaw allows a local user to consume all available system resources and cause a denial of service condition.
X.org Libx11
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux 9.0
Fedoraproject Fedora 38
1 Github repository
7.8
CVSSv3
CVE-2023-43787
A vulnerability was found in libX11 due to an integer overflow within the XCreateImage() function. This flaw allows a local user to trigger an integer overflow and execute arbitrary code with elevated privileges.
X.org Libx11
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux 9.0
Fedoraproject Fedora 38
NA
CVE-2004-0687
Multiple stack-based buffer overflows in (1) xpmParseColors in parse.c, (2) ParseAndPutPixels in create.c, and (3) ParsePixels in parse.c for libXpm prior to 6.8.1 allow remote malicious users to execute arbitrary code via a malformed XPM image file.
Xfree86 Project X11r6 4.1.0
Xfree86 Project X11r6 3.3.6
Xfree86 Project X11r6 4.0.2.11
Xfree86 Project X11r6 4.0.3
X.org X11r6 6.7.0
Xfree86 Project X11r6 4.3.0
Xfree86 Project X11r6 4.2.1
X.org X11r6 6.8
Xfree86 Project X11r6 4.0
Xfree86 Project X11r6 4.0.1
Xfree86 Project X11r6 4.2.0
Xfree86 Project X11r6 4.1.12
Xfree86 Project X11r6 4.1.11
Suse Suse Linux 9.0
Suse Suse Linux 8.2
Suse Suse Linux 8
Suse Suse Linux 9.1
Openbsd Openbsd 3.5
Openbsd Openbsd 3.4
Suse Suse Linux 8.1
NA
CVE-2004-0688
Multiple integer overflows in (1) the xpmParseColors function in parse.c, (2) XpmCreateImageFromXpmImage, (3) CreateXImage, (4) ParsePixels, and (5) ParseAndPutPixels for libXpm prior to 6.8.1 may allow remote malicious users to execute arbitrary code via a malformed XPM image fi...
Xfree86 Project X11r6 4.0.3
Xfree86 Project X11r6 4.1.0
Xfree86 Project X11r6 4.0.1
Xfree86 Project X11r6 4.0.2.11
Xfree86 Project X11r6 4.2.1
Xfree86 Project X11r6 4.3.0
X.org X11r6 6.7.0
X.org X11r6 6.8
Xfree86 Project X11r6 4.1.11
Xfree86 Project X11r6 4.1.12
Xfree86 Project X11r6 3.3.6
Xfree86 Project X11r6 4.0
Xfree86 Project X11r6 4.2.0
Openbsd Openbsd 3.4
Suse Suse Linux 9.0
Suse Suse Linux 9.1
Openbsd Openbsd 3.5
Suse Suse Linux 8.1
Suse Suse Linux 8.2
Suse Suse Linux 8
NA
CVE-2004-0914
Multiple vulnerabilities in libXpm for 6.8.1 and previous versions, as used in XFree86 and other packages, include (1) multiple integer overflows, (2) out-of-bounds memory accesses, (3) directory traversal, (4) shell metacharacter, (5) endless loops, and (6) memory leaks, which c...
Lesstif Lesstif 0.93.34
Lesstif Lesstif 0.93.36
X.org X11r6 6.8.1
Xfree86 Project X11r6 3.3
Xfree86 Project X11r6 4.0.2.11
Xfree86 Project X11r6 4.0.3
Xfree86 Project X11r6 4.3.0
Lesstif Lesstif 0.93.40
Lesstif Lesstif 0.93.91
Xfree86 Project X11r6 3.3.2
Xfree86 Project X11r6 3.3.3
Xfree86 Project X11r6 3.3.4
Xfree86 Project X11r6 4.1.0
Xfree86 Project X11r6 4.1.11
Lesstif Lesstif 0.93
Lesstif Lesstif 0.93.94
Lesstif Lesstif 0.93.96
Xfree86 Project X11r6 3.3.5
Xfree86 Project X11r6 3.3.6
Xfree86 Project X11r6 4.1.12
Xfree86 Project X11r6 4.2.0
Lesstif Lesstif 0.93.12
NA
CVE-2005-0605
scan.c for LibXPM may allow malicious users to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow.
X.org X11r6 6.8
X.org X11r6 6.8.1
Xfree86 Project X11r6 3.3
Xfree86 Project X11r6 4.0.1
Xfree86 Project X11r6 4.0.2.11
Xfree86 Project X11r6 4.2.1
Xfree86 Project X11r6 4.3.0
Sgi Propack 3.0
X.org X11r6 6.7.0
Xfree86 Project X11r6 3.3.6
Xfree86 Project X11r6 4.0
Xfree86 Project X11r6 4.2.0
Lesstif Lesstif 0.93.94
Xfree86 Project X11r6 3.3.4
Xfree86 Project X11r6 3.3.5
Xfree86 Project X11r6 4.1.11
Xfree86 Project X11r6 4.1.12
Xfree86 Project X11r6 3.3.2
Xfree86 Project X11r6 3.3.3
Xfree86 Project X11r6 4.0.3
Xfree86 Project X11r6 4.1.0
Xfree86 Project X11r6 4.3.0.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »