MiracleLinux 8 : gimp:2.8 (AXSA:2026-712:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-712:01 advisory. gimp: GIMP:Memory disclosure and denial of service via specially crafted PCX image CVE-2026-4887 gimp: GIMP: Remote Code Execution via XPM File Parsi...

libXpm vulnerable to out-of-bounds read

Overview libXpm provided by X.Org Foundation incorrectly handles malformed XPM files, leading to an out-of-bounds read vulnerability. Out-of-bounds read CWE-125 - CVE-2026-4367 Naoki Wakamatsu reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security...

EUVD-2014-9641

Malware in sbrugna...

Unspecified Vulnerability in FreeImage (CNVD-2024-39258)

FreeImage is FreeImage open source a cross-platform for supporting popular graphic image formats open source library . A security vulnerability exists in FreeImage that stems from a stack buffer overflow in the Load function of PluginXPM.cpp when processing XPM files in libfreeimage. No detailed...

USN-6408-2 libxpm vulnerabilities

USN-6408-1 fixed several vulnerabilities in libXpm. This update provides the corresponding update for Ubuntu 14.04 LTS, Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Original advisory details: Yair Mizrahi discovered that libXpm incorrectly handled certain malformed XPM image files. If a user were trick...

Debian: Security Advisory (DLA-3603-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-6408-1 libxpm vulnerabilities

Yair Mizrahi discovered that libXpm incorrectly handled certain malformed XPM image files. If a user were tricked into opening a specially crafted XPM image file, a remote attacker could possibly use this issue to consume memory, leading to a denial of service. CVE-2023-43786 Yair Mizrahi...

Arbitrary Code Execution

libXpm.so is vulnerable to arbitrary code execution. A remote attacker is able to cause a denial of service out-of-bounds write or execute arbitrary code by parsing malicious XPM files via 1 the number of extensions or 2 their concatenated length in a crafted XPM file triggering a heap-based buff...

Arbitrary Code Execution

OpenOffice.org is vulnerable to arbitrary code execution. An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way OpenOffice.org parsed XPM files. An attacker could create a specially-crafted document, which once opened by a local, unsuspecting user, could lead to...

Denial Of Service (DoS) Through Xpm Files

ImageMagick is vulnerable to denial of service DoS attacks. These attacks are possible through a flaw in the handling of xpm files...

Denial Of Service (DoS) Through Xpm Files

ImageMagick is vulnerable to denial of service DoS attacks. These attacks are possible through a heap overflow when parsing corrupted xpm files...

Updated libxpm packages fix security vulnerability

An out of boundary write has been found in libXpm before 3.5.12 which can be exploited by an attacker through maliciously crafted XPM files. To trigger the vulnerability, a program must explicitly request to also parse XPM extensions while reading files. The motif toolkit and xdm are two among so...

Debian DLA-189-1 : libgd2 security update

Multiple vulnerabilities were discovered in libgd2, a graphics library : CVE-2014-2497 The gdImageCreateFromXpm function would try to dereference a NULL pointer when reading an XPM file with a special color table. This could allow remote attackers to cause a denial of service crash via crafted XP...

gd: NULL pointer dereference in gdImageCreateFromXpm()

A NULL pointer dereference flaw was found in the gdImageCreateFromXpm function of PHP's gd extension. A remote attacker could use this flaw to crash a PHP application using gd via a specially crafted X PixMap XPM file...

libgd / PHP DoS

NULL pointer dereference on XPM files parsing...

Oracle Outside In XPM Processing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable products utilizing the Oracle Outside In Technology. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...

OpenOffice.org XPM File Processing Integer Overflow (CVE-2009-2949)

OpenOffice.org is an open source office suite that includes a word processor, a spreadsheet application, a presentation creator, an illustration drawer, a desktop database, and an equation editor. The product is made available for multiple platforms and languages. An integer overflow vulnerabilit...

OpenOffice Multiple Remote Code Execution Vulnerabilities - Feb10

This host has OpenOffice running which is prone to multiple remote code execution vulnerabilities. OpenVAS Vulnerability Test $Id: gbopenofficemultcodeexecvulnwinfeb10.nasl 5323 2017-02-17 08:49:23Z teissa $ OpenOffice Multiple Remote Code Execution Vulnerabilities - Feb10 Authors: Veerendra G...

OpenOffice Multiple Remote Code Execution Vulnerabilities (Feb 2010)

OpenOffice is prone to multiple remote code execution vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RedHat Update for openoffice.org RHSA-2010:0101-02

Check for the Version of openoffice.org OpenVAS Vulnerability Test RedHat Update for openoffice.org RHSA-2010:0101-02 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify ...