libXpm (AlmaLinux:8) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the AlmaLinux:8 package libXpm, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (5)
CVE-2022-4883 — CVSS 8.8 (high): A flaw was found in libXpm. When processing files with .Z or .gz extensions, the library calls external programs to compress and uncompress…
CVE-2022-44617 — CVSS 7.5 (high): A flaw was found in libXpm. When processing a file with width of 0 and a very large height, some parser functions will be called repeatedly…
CVE-2022-46285 — CVSS 7.5 (high): A flaw was found in libXpm. This issue occurs when parsing a file with a comment not closed; the end-of-file condition will not be…
CVE-2023-43788 — CVSS 5.5 (medium): A vulnerability was found in libXpm due to a boundary condition within the XpmCreateXpmImageFromBuffer() function. This flaw allows a local…
CVE-2023-43789 — CVSS 5.5 (medium): A vulnerability was found in libXpm where a vulnerability exists due to a boundary condition, a local user can trigger an out-of-bounds…