Untriaged
Permalink
CVE-2023-43789
5.5 MEDIUM
- CVSS version: 3.1
- Attack vector (AV): LOCAL
- Attack complexity (AC): LOW
- Privileges required (PR): NONE
- User interaction (UI): REQUIRED
- Scope (S): UNCHANGED
- Confidentiality impact (C): HIGH
- Integrity impact (I): NONE
- Availability impact (A): NONE
Libxpm: out of bounds read on xpm with corrupted colormap
A vulnerability was found in libXpm where a vulnerability exists due to a boundary condition, a local user can trigger an out-of-bounds read error and read contents of memory on the system.
References
- https://access.redhat.com/security/cve/CVE-2023-43789 x_refsource_REDHAT vdb-entry
- RHBZ#2242249 issue-tracking x_refsource_REDHAT
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://access.redhat.com/security/cve/CVE-2023-43789 x_refsource_REDHAT vdb-entry
- RHBZ#2242249 issue-tracking x_refsource_REDHAT
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- RHSA-2024:2146 vendor-advisory x_refsource_REDHAT
- RHSA-2024:2217 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-43789 x_refsource_REDHAT vdb-entry
- RHBZ#2242249 issue-tracking x_refsource_REDHAT
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- RHSA-2024:2146 vendor-advisory x_refsource_REDHAT
- RHSA-2024:2217 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-43789 x_refsource_REDHAT vdb-entry
- RHBZ#2242249 issue-tracking x_refsource_REDHAT
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- RHSA-2024:2146 vendor-advisory x_refsource_REDHAT
- RHSA-2024:2217 vendor-advisory x_refsource_REDHAT
- RHSA-2024:2974 vendor-advisory x_refsource_REDHAT
- RHSA-2024:3022 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-43789 x_refsource_REDHAT vdb-entry
- RHBZ#2242249 issue-tracking x_refsource_REDHAT
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- RHSA-2024:2146 vendor-advisory x_refsource_REDHAT
- RHSA-2024:2217 vendor-advisory x_refsource_REDHAT
- RHSA-2024:2974 vendor-advisory x_refsource_REDHAT
- RHSA-2024:3022 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-43789 x_refsource_REDHAT vdb-entry
- RHBZ#2242249 issue-tracking x_refsource_REDHAT
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- RHSA-2024:2146 vendor-advisory x_refsource_REDHAT
- RHSA-2024:2217 vendor-advisory x_refsource_REDHAT
- RHSA-2024:2974 vendor-advisory x_refsource_REDHAT
- RHSA-2024:3022 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-43789 x_refsource_REDHAT vdb-entry
- RHBZ#2242249 issue-tracking x_refsource_REDHAT
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- RHSA-2024:2146 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:2217 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:2974 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:3022 vendor-advisory x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-43789 x_transferred x_refsource_REDHAT vdb-entry
- RHBZ#2242249 issue-tracking x_refsource_REDHAT x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- RHSA-2024:2146 vendor-advisory x_refsource_REDHAT
- RHSA-2024:2217 vendor-advisory x_refsource_REDHAT
- RHSA-2024:2974 vendor-advisory x_refsource_REDHAT
- RHSA-2024:3022 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-43789 x_refsource_REDHAT vdb-entry
- RHBZ#2242249 issue-tracking x_refsource_REDHAT
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- RHBZ#2242249 issue-tracking x_refsource_REDHAT x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- RHSA-2024:2146 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:2217 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:2974 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:3022 vendor-advisory x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-43789 x_transferred x_refsource_REDHAT vdb-entry
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- RHSA-2024:2146 vendor-advisory x_refsource_REDHAT
- RHSA-2024:2217 vendor-advisory x_refsource_REDHAT
- RHSA-2024:2974 vendor-advisory x_refsource_REDHAT
- RHSA-2024:3022 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-43789 x_refsource_REDHAT vdb-entry
- RHBZ#2242249 issue-tracking x_refsource_REDHAT
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- RHSA-2024:2146 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:2217 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:2974 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:3022 vendor-advisory x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-43789 x_transferred x_refsource_REDHAT vdb-entry
- RHBZ#2242249 issue-tracking x_refsource_REDHAT x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- RHSA-2024:2146 vendor-advisory x_refsource_REDHAT
- RHSA-2024:2217 vendor-advisory x_refsource_REDHAT
- RHSA-2024:2974 vendor-advisory x_refsource_REDHAT
- RHSA-2024:3022 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-43789 x_refsource_REDHAT vdb-entry
- RHBZ#2242249 issue-tracking x_refsource_REDHAT
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- RHSA-2024:2146 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:2217 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:2974 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:3022 vendor-advisory x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-43789 x_transferred x_refsource_REDHAT vdb-entry
- RHBZ#2242249 issue-tracking x_refsource_REDHAT x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- RHSA-2024:2146 vendor-advisory x_refsource_REDHAT
- RHSA-2024:2217 vendor-advisory x_refsource_REDHAT
- RHSA-2024:2974 vendor-advisory x_refsource_REDHAT
- RHSA-2024:3022 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-43789 x_refsource_REDHAT vdb-entry
- RHBZ#2242249 issue-tracking x_refsource_REDHAT
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- RHSA-2024:2146 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:2217 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:2974 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:3022 vendor-advisory x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-43789 x_transferred x_refsource_REDHAT vdb-entry
- RHBZ#2242249 issue-tracking x_refsource_REDHAT x_transferred
- RHSA-2024:2146 vendor-advisory x_refsource_REDHAT
- RHSA-2024:2217 vendor-advisory x_refsource_REDHAT
- RHSA-2024:2974 vendor-advisory x_refsource_REDHAT
- RHSA-2024:3022 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-43789 x_refsource_REDHAT vdb-entry
- RHBZ#2242249 issue-tracking x_refsource_REDHAT
- RHSA-2024:2146 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:2217 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:2974 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:3022 vendor-advisory x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-43789 x_transferred x_refsource_REDHAT vdb-entry
- RHBZ#2242249 issue-tracking x_refsource_REDHAT x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- RHSA-2024:2974 vendor-advisory x_refsource_REDHAT
- RHSA-2024:3022 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-43789 x_refsource_REDHAT vdb-entry
- RHBZ#2242249 issue-tracking x_refsource_REDHAT
- RHSA-2024:2146 vendor-advisory x_refsource_REDHAT
- RHSA-2024:2217 vendor-advisory x_refsource_REDHAT
- RHSA-2024:2146 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:2217 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:2974 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:3022 vendor-advisory x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-43789 x_transferred x_refsource_REDHAT vdb-entry
- RHBZ#2242249 issue-tracking x_refsource_REDHAT x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- RHSA-2024:2217 vendor-advisory x_refsource_REDHAT
- RHSA-2024:2974 vendor-advisory x_refsource_REDHAT
- RHSA-2024:3022 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-43789 x_refsource_REDHAT vdb-entry
- RHBZ#2242249 issue-tracking x_refsource_REDHAT
- RHSA-2024:2146 vendor-advisory x_refsource_REDHAT
- RHSA-2024:2146 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:2217 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:2974 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:3022 vendor-advisory x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-43789 x_transferred x_refsource_REDHAT vdb-entry
- RHBZ#2242249 issue-tracking x_refsource_REDHAT x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.debian.org/debian-lts-announce/2023/10/msg00005.html
- RHSA-2024:2146 vendor-advisory x_refsource_REDHAT
- RHSA-2024:2217 vendor-advisory x_refsource_REDHAT
- RHSA-2024:2974 vendor-advisory x_refsource_REDHAT
- RHSA-2024:3022 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2023-43789 x_refsource_REDHAT vdb-entry
- RHBZ#2242249 issue-tracking x_refsource_REDHAT
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.debian.org/debian-lts-announce/2023/10/msg00005.html
- RHSA-2024:2146 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:2217 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:2974 vendor-advisory x_refsource_REDHAT x_transferred
- RHSA-2024:3022 vendor-advisory x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2023-43789 x_transferred x_refsource_REDHAT vdb-entry
- RHBZ#2242249 issue-tracking x_refsource_REDHAT x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
Affected products
motif
- *
libXpm
- ==3.5.17
- <3.5.17
- *
Package maintainers
-
@alyssais Alyssa Ross <hi@alyssa.is>