FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-11-23 17:01:17 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
199cdb4d-690d-11ee-9ed0-001fc69cd6dc	x11/libXpm multiple vulnerabilities The X.Org project reports: CVE-2023-43788: Out of bounds read in XpmCreateXpmImageFromBuffer An out-of-bounds read is located in ParseComment() when reading from a memory buffer instead of a file, as it continued to look for the closing comment marker past the end of the buffer. CVE-2023-43789: Out of bounds read on XPM with corrupted colormap A corrupted colormap section may cause libXpm to read out of bounds. Discovery 2023-09-22 Entry 2023-10-12 libXpm < 3.5.17 CVE-2023-43788 CVE-2023-43789 https://lists.x.org/archives/xorg/2023-October/061506.html

VuXML ID

Description

199cdb4d-690d-11ee-9ed0-001fc69cd6dc

x11/libXpm multiple vulnerabilities

The X.Org project reports:

CVE-2023-43788: Out of bounds read in XpmCreateXpmImageFromBuffer

An out-of-bounds read is located in ParseComment() when reading from a memory buffer instead of a file, as it continued to look for the closing comment marker past the end of the buffer.

CVE-2023-43789: Out of bounds read on XPM with corrupted colormap

A corrupted colormap section may cause libXpm to read out of bounds.

Discovery 2023-09-22
Entry 2023-10-12
libXpm

< 3.5.17

CVE-2023-43788
CVE-2023-43789
https://lists.x.org/archives/xorg/2023-October/061506.html