[ALSA-2023:0383] Important: libXpm security update
Type:
security
Severity:
important
Release date:
2023-03-13
Description:
X.Org X11 libXpm runtime library. Security Fix(es): * libXpm: compression commands depend on $PATH (CVE-2022-4883) * libXpm: Runaway loop on width of 0 and enormous height (CVE-2022-44617) * libXpm: Infinite loop on unclosed comments (CVE-2022-46285) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 libXpm-devel-3.5.13-8.el9_1.aarch64.rpm 30b4c77de55f0362a65b80cdecefe1e3a441c40b70339280893bf6816e399e47
aarch64 libXpm-3.5.13-8.el9_1.aarch64.rpm b61a699c5c664d0262b279e12a2c32690fdc8428856480b18b91611bb6611c55
i686 libXpm-3.5.13-8.el9_1.i686.rpm a480fde4a4e7588afd28669f37c5d99d6fce30ca4b2242339d9f3291e10b2007
i686 libXpm-devel-3.5.13-8.el9_1.i686.rpm fb0049df50b019cd939de8765800b76f9fa151263f27e32a1be97e5a27bc2401
ppc64le libXpm-3.5.13-8.el9_1.ppc64le.rpm 420f3c80dc8fd2ee8eebe1fd89c3d9a2375d92456fb55349674f2ea694690752
ppc64le libXpm-devel-3.5.13-8.el9_1.ppc64le.rpm 7c6243d1a4556d1daf028449f8a90d74b22c726a1cf951eeb8153d0ee77329b4
s390x libXpm-devel-3.5.13-8.el9_1.s390x.rpm 0cca6f2f73e7ec44b03f451dd95fab137fad7a494aaecb57b19a423fcb28f797
s390x libXpm-3.5.13-8.el9_1.s390x.rpm 16796c5d0b7d3e6586db4730349bd9c3f34ba872cfeebe0450628a1f08517a51
x86_64 libXpm-devel-3.5.13-8.el9_1.x86_64.rpm 2e9410d0418317e8db5a7a1af6bb09ee05d94402000b17ef83d0dd4b14e0d786
x86_64 libXpm-3.5.13-8.el9_1.x86_64.rpm 5ae4cf2431eef2c0f025647bb722585d7d5bb6158c38ab3de3bd6a4b94f1424d
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.