A vulnerability was found in libXpm due to a boundary condition within the XpmCreateXpmImageFromBuffer() function. This flaw allows a local attacker to trigger an out-of-bounds read error and read the contents of memory on the system.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
History
21 Nov 2024, 08:24
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
References | () https://access.redhat.com/errata/RHSA-2024:2146 - | |
References | () https://access.redhat.com/errata/RHSA-2024:2217 - | |
References | () https://access.redhat.com/errata/RHSA-2024:2974 - | |
References | () https://access.redhat.com/errata/RHSA-2024:3022 - | |
References | () https://access.redhat.com/security/cve/CVE-2023-43788 - Third Party Advisory | |
References | () https://bugzilla.redhat.com/show_bug.cgi?id=2242248 - Issue Tracking, Third Party Advisory |
16 Sep 2024, 15:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
22 May 2024, 17:16
Type | Values Removed | Values Added |
---|---|---|
References |
|
30 Apr 2024, 14:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
22 Dec 2023, 20:55
Type | Values Removed | Values Added |
---|---|---|
References | () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZECBCLDYUGLDSVV75ECPIBW7JXOB3747/ - Mailing List, Third Party Advisory | |
References | () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TFAJTBNO3PAIA6EGZR4PN62H6RLKNDTE/ - Mailing List, Third Party Advisory | |
References | (MISC) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/63IBRFLQVZSMOAZBZOBKFWJP26ILRAGQ/ - Mailing List | |
References | () https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I3KFUQT42R7TB4D7RISNSBQFJGLTQGUL/ - Mailing List, Third Party Advisory | |
CPE | cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:* |
06 Dec 2023, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
05 Dec 2023, 17:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-10-10 13:15
Updated : 2024-11-21 08:24
NVD link : CVE-2023-43788
Mitre link : CVE-2023-43788
CVE.ORG link : CVE-2023-43788
JSON object : View
Products Affected
redhat
- enterprise_linux
fedoraproject
- fedora
x.org
- libxpm
CWE
CWE-125
Out-of-bounds Read