CVE-2023-43788

CVSS V2 None CVSS V3 None

Description

A vulnerability was found in libXpm due to a boundary condition within the XpmCreateXpmImageFromBuffer() function. This flaw allows a local attacker to trigger an out-of-bounds read error and read the contents of memory on the system.

Overview

CVE ID
CVE-2023-43788

Assigner
redhat

Vulnerability Status
PUBLISHED

Published Version
2023-10-10T12:26:08.737Z

Last Modified Date
2024-05-29T22:22:18.680Z

Weakness Enumerations

CWE	URL
CWE-125	http://cwe.mitre.org/data/definitions/125.html

References

Reference URL	Reference Tags
https://access.redhat.com/errata/RHSA-2024:2146	vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:2217	vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:2974	vendor-advisory x_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:3022	vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-43788	vdb-entry x_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=2242248	issue-tracking x_refsource_REDHAT
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/63IBRFLQVZSMOAZBZOBKFWJP26ILRAGQ/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I3KFUQT42R7TB4D7RISNSBQFJGLTQGUL/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TFAJTBNO3PAIA6EGZR4PN62H6RLKNDTE/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/V6FARGWN7VWXXWPXYNEEDJLRR3EWFZ3T/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZECBCLDYUGLDSVV75ECPIBW7JXOB3747/

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2023-43788
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43788

History

Created	Old Value	New Value	Data Type	Notes
2024-06-25 16:02:59				Added to TrackCVE