USN-6408-2: libXpm vulnerabilities

Read Time:53 Second

USN-6408-1 fixed several vulnerabilities in libXpm. This update provides
the corresponding update for Ubuntu 14.04 LTS, Ubuntu 16.04 LTS and Ubuntu 18.04 LTS.

Original advisory details:

Yair Mizrahi discovered that libXpm incorrectly handled certain malformed
XPM image files. If a user were tricked into opening a specially crafted
XPM image file, a remote attacker could possibly use this issue to consume
memory, leading to a denial of service. (CVE-2023-43786)

Yair Mizrahi discovered that libXpm incorrectly handled certain malformed
XPM image files. If a user were tricked into opening a specially crafted
XPM image file, a remote attacker could use this issue to cause libXpm to
crash, leading to a denial of service, or possibly execute arbitrary code.
(CVE-2023-43787)

Alan Coopersmith discovered that libXpm incorrectly handled certain
malformed XPM image files. If a user were tricked into opening a specially
crafted XPM image file, a remote attacker could possibly use this issue to
cause libXpm to crash, leading to a denial of service. (CVE-2023-43788,
CVE-2023-43789)

Live Video of Promachoteuthis Squid

YubiKey Side-Channel Attack

Spyware Vendors’ Nebulous Ecosystem Helps Them Evade Sanctions

US and Allies Accuse Russian Military of Destructive Cyber-Attacks

PyPI Revival Hijack Puts Thousands of Applications at Risk

Security Budgets Come Under Pressure as “Hypergrowth” Ends

Cicada ransomware – what you need to know

UK Signs Council of Europe AI Convention

Cisco Warns of Critical Vulnerabilities in Smart Licensing Utility

USN-6408-2: libXpm vulnerabilities

libcoap-4.3.5-6.fc41

chromium-128.0.6613.119-1.fc39

chromium-128.0.6613.119-1.el8

chromium-128.0.6613.119-1.el9

chromium-128.0.6613.119-1.fc41

chromium-128.0.6613.119-1.fc40