Amazon Linux 2023 : libXpm, libXpm-devel (ALAS2023-2026-1656)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1656 advisory. As per upstream advisory: libXpm Out-of-bounds read in xpmNextWord CVE-2026-4367 Tenable has extracted the preceding description block directly from the tested product security advisory. Note that Ness...

libXpm-devel-3.5.18-2.1 on GA media (moderate)

libXpm-devel-3.5.18-2.1 on GA media Announcement ID: openSUSE-SU-2026:10608-1 Rating: moderate Cross-References: CVE-2026-4367 CVSS scores: CVE-2026-4367 SUSE : 6.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H CVE-2026-4367 SUSE : 5.8 CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:...

PT-2026-34870

Name of the Vulnerable Software and Affected Versions libXpm versions prior to 3.5.18-2.1 Description An issue exists in the image parsing functionality of libXpm. Recommendations Update to version 3.5.18-2.1...

OPENSUSE-SU-2026:10608-1 libXpm-devel-3.5.18-2.1 on GA media

These are all security issues fixed in the libXpm-devel-3.5.18-2.1 package on the GA media of openSUSE Tumbleweed...

MiracleLinux 7 : libXpm-3.5.12-2.el7 (AXSA:2023-4845:02)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-4845:02 advisory. libXpm: compression commands depend on $PATH CVE-2022-4883 Tenable has extracted the preceding description block directly from the MiracleLinux security...

OPENSUSE-SU-2024:13297-1 libXpm-devel-3.5.17-1.1 on GA media

These are all security issues fixed in the libXpm-devel-3.5.17-1.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2024:12617-1 libXpm-devel-3.5.14-2.1 on GA media

These are all security issues fixed in the libXpm-devel-3.5.14-2.1 package on the GA media of openSUSE Tumbleweed...

Amazon Linux 2023 : libXpm, libXpm-devel (ALAS2023-2023-107)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-107 advisory. A flaw was found in libXpm. When processing a file with width of 0 and a very large height, some parser functions will be called repeatedly and can lead to an infinite loop, resulting in a Deni...

CentOS 7 : libXpm (RHSA-2023:0377)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:0377 advisory. - A flaw was found in libXpm. When processing files with .Z or .gz extensions, the library calls external programs to compress and uncompress files, relying on...

SUSE: Security Advisory (SUSE-SU-2023:0171-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Oracle Linux 7 : libXpm (ELSA-2023-0377)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-0377 advisory. 3.5.12-2 - Fix CVE-2022-4883: compression commands depends on /usr/local/bin:/usr/bin 2161715 Tenable has extracted the preceding description block directly fro...