libXpm: Multiple Vulnerabilities — GLSA 202408-03

Multiple vulberabilities have been discovered in libXpm, the worst of which could lead to a denial of service.

Affected packages

Package	x11-libs/libXpm on all architectures
Affected versions	< 3.5.17
Unaffected versions	>= 3.5.17

Background

The X PixMap image format is an extension of the monochrome X BitMap format specified in the X protocol, and is commonly used in traditional X applications.

Description

Multiple vulnerabilities have been discovered in libXpm. Please review the CVE identifiers referenced below for details.

Impact

Please review the referenced CVE identifiers for details.

Workaround

There is no known workaround at this time.

Resolution

All libXpm users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=x11-libs/libXpm-3.5.17"

References

CVE-2022-4883
CVE-2022-44617
CVE-2022-46285
CVE-2023-43788
CVE-2023-43789

Release date
August 07, 2024

Latest revision
August 07, 2024: 1

Severity
normal

Exploitable
local

Bugzilla entries

891209
915130