Fedora 39 : libX11 (2023-06bff5611a)

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-06bff5611a advisory. libX11 1.8.7, fixes CVE-2023-43785 to 43789 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessu...

Amazon Linux 2023 : libXpm, libXpm-devel (ALAS2023-2023-382)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-382 advisory. A vulnerability was found in libX11 due to an infinite loop within the PutSubImage function. This flaw allows a local user to consume all available system resources and cause a denial of servic...

Amazon Linux 2023 : libX11, libX11-common, libX11-devel (ALAS2023-2023-383)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-383 advisory. libX11: out-of-bounds memory access in XkbReadKeySyms CVE-2023-43785 A vulnerability was found in libX11 due to an infinite loop within the PutSubImage function. This flaw allows a local user t...

Ubuntu 16.04 ESM / 18.04 ESM : libXpm vulnerabilities (USN-6408-2)

The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6408-2 advisory. USN-6408-1 fixed several vulnerabilities in libXpm. This update provides the corresponding update for Ubuntu 14.04 LTS, Ubuntu 16.04 LTS and...

The vulnerability of the library for working with image files, libXpm, related to a read-out error beyond the memory boundaries, allows an intruder to gain unauthorized access to protected information.

The vulnerability of the libXpm library for working with image files is related to a read access exception that occurs beyond the memory boundaries. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

Amazon Linux 2 : libXpm (ALAS-2023-2295)

The version of libXpm installed on the remote host is prior to 3.5.12-9. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2295 advisory. libX11: integer overflow in XCreateImage leading to a heap overflow. CVE-2023-43787 libXpm: out of bounds read in...

ROS-20231018-02

The libXpm image file library vulnerability is related to a read error call outside of memory boundaries. outside of memory boundaries. Exploitation of the vulnerability could allow an attacker to gain unauthorized access to protected information...

ROS-20231016-01

Vulnerability of XpmCreateXpmImageFromBuffer function of libXpm image file library is related to a read error call. is related to a read error outside the valid range. Exploitation of the vulnerability could allow an intruder to gain unauthorized access to protected information...

Fedora 38 : libXpm (2023-591b7f5047)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-591b7f5047 advisory. Security fix for PUT CVEs HERE Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus ha...

MGASA-2023-0287 Updated libX11 packages fix security vulnerabilities

A vulnerability was found in libX11 due to a boundary condition within the XkbReadKeySyms function. This flaw allows a local user to trigger an out-of-bounds read error and read the contents of memory on the system. CVE-2023-43785 A vulnerability was found in libX11 due to an infinite loop within...

OESA-2023-1708 libX11 security update

Core X11 protocol client library. Security Fixes: A vulnerability was found in libX11 due to a boundary condition within the XkbReadKeySyms function. This flaw allows a local user to trigger an out-of-bounds read error and read the contents of memory on the system.CVE-2023-43785 A vulnerability w...

PT-2023-35524 · Git +1 · Opensc

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read error. The crash state indicates involvement of the iasecc parse get tlv, iasecc parse docp, and iase...

AZL-31320 CVE-2023-43785 affecting package libX11 for versions less than 1.8.7-1

A vulnerability was found in libX11 due to a boundary condition within the XkbReadKeySyms function. This flaw allows a local user to trigger an out-of-bounds read error and read the contents of memory on the system...

CVE-2023-43785

A vulnerability was found in libX11 due to a boundary condition within the XkbReadKeySyms function. This flaw allows a local user to trigger an out-of-bounds read error and read the contents of memory on the system...

CVE-2023-43788

A vulnerability was found in libXpm due to a boundary condition within the XpmCreateXpmImageFromBuffer function. This flaw allows a local attacker to trigger an out-of-bounds read error and read the contents of memory on the system...

httpd: mod_proxy: HTTP response splitting

A flaw was found in the modproxy module of httpd. A malicious backend can cause the response headers to be truncated because they are not cleaned when an error is found while reading them, resulting in some headers being incorporated into the response body and not being interpreted by a client...

httpd: mod_proxy: HTTP response splitting

A flaw was found in the modproxy module of httpd. A malicious backend can cause the response headers to be truncated because they are not cleaned when an error is found while reading them, resulting in some headers being incorporated into the response body and not being interpreted by a client...

OESA-2023-1453 samba security update

Samba is a suite of programs for Linux and Unix to interoperate with Windows. Security Fixes: An out-of-bounds read vulnerability was found in Samba due to insufficient length checks in winbinddpamauthcrap.c. When performing NTLM authentication, the client replies to cryptographic challenges back...

CVE-2023-3745

A heap-based buffer overflow issue was found in ImageMagick's PushCharPixel function in quantum-private.h. This issue may allow a local attacker to trick the user into opening a specially crafted file, triggering an out-of-bounds read error and allowing an application to crash, resulting in a...

Heap overflow

A heap-based buffer overflow issue was found in ImageMagick's PushCharPixel function in quantum-private.h. This issue may allow a local attacker to trick the user into opening a specially crafted file, triggering an out-of-bounds read error and allowing an application to crash, resulting in a...