[ubuntu/lunar-updates] libxpm 1:3.5.12-1.1ubuntu0.1 (Accepted)
Ubuntu Archive Robot
ubuntu-archive-robot at lists.canonical.com
Tue Oct 3 17:58:31 UTC 2023
libxpm (1:3.5.12-1.1ubuntu0.1) lunar-security; urgency=medium
* SECURITY UPDATE: stack exhaustion from infinite recursion in
PutSubImage() in libx11
- d/p/0004-test-Add-test-case-for-CVE-2023-43786-stack-exhausti.patch
- d/p/0005-Avoid-CVE-2023-43786-stack-exhaustion-in-XPutImage.patch
- CVE-2023-43786
* SECURITY UPDATE: integer overflow in XCreateImage() leading to a heap
overflow in libx11
- d/p/0006-test-Add-test-case-for-CVE-2023-43787-integer-overfl.patch
- d/p/0007-Avoid-CVE-2023-43787-integer-overflow-in-XCreateImag.patch
- CVE-2023-43787
* SECURITY UPDATE: out of bounds read in XpmCreateXpmImageFromBuffer()
- d/p/0001-Fix-CVE-2023-43788-Out-of-bounds-read-in-XpmCreateXp.patch
- CVE-2023-43788
* SECURITY UPDATE: out of bounds read on XPM with corrupted colormap
- d/p/0003-Fix-CVE-2023-43789-Out-of-bounds-read-on-XPM-with-co.patch
- CVE-2023-43789
Date: 2023-10-02 20:23:08.284913+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/libxpm/1:3.5.12-1.1ubuntu0.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the lunar-changes
mailing list