Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DSA-3772-1:323E8
HistoryJan 26, 2017 - 7:30 p.m.

[SECURITY] [DSA 3772-1] libxpm security update

2017-01-2619:30:27
lists.debian.org
14

0.025 Low

EPSS

Percentile

90.2%

JSON

Debian Security Advisory DSA-3772-1 [email protected]
https://www.debian.org/security/ Salvatore Bonaccorso
January 26, 2017 https://www.debian.org/security/faq

Package : libxpm
CVE ID : CVE-2016-10164

Tobias Stoeckmann discovered that the libXpm library contained two
integer overflow flaws, leading to a heap out-of-bounds write, while
parsing XPM extensions in a file. An attacker can provide a specially
crafted XPM file that, when processed by an application using the libXpm
library, would cause a denial-of-service against the application, or
potentially, the execution of arbitrary code with the privileges of the
user running the application.

For the stable distribution (jessie), this problem has been fixed in
version 1:3.5.12-0+deb8u1. This update is based on a new upstream
version of libxpm including additional bug fixes.

For the testing distribution (stretch) and the unstable distribution
(sid), this problem has been fixed in version 1:3.5.12-1.

We recommend that you upgrade your libxpm packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian8mipselxpmutils< 3.5.12-0+deb8u1xpmutils_3.5.12-0+deb8u1_mipsel.deb
Debian7armhflibxpm4-dbg< 3.5.10-1+deb7u1libxpm4-dbg_3.5.10-1+deb7u1_armhf.deb
Debian8mipslibxpm4< 3.5.12-0+deb8u1libxpm4_3.5.12-0+deb8u1_mips.deb
Debian8mipsellibxpm-dev< 3.5.12-0+deb8u1libxpm-dev_3.5.12-0+deb8u1_mipsel.deb
Debian8amd64libxpm4< 3.5.12-0+deb8u1libxpm4_3.5.12-0+deb8u1_amd64.deb
Debian8mipslibxpm4-dbg< 3.5.12-0+deb8u1libxpm4-dbg_3.5.12-0+deb8u1_mips.deb
Debian7alllibxpm< 1:3.5.10-1+deb7u1libxpm_1:3.5.10-1+deb7u1_all.deb
Debian7armhflibxpm-dev< 3.5.10-1+deb7u1libxpm-dev_3.5.10-1+deb7u1_armhf.deb
Debian8alllibxpm< 1:3.5.12-0+deb8u1libxpm_1:3.5.12-0+deb8u1_all.deb
Debian8arm64libxpm4-dbg< 3.5.12-0+deb8u1libxpm4-dbg_3.5.12-0+deb8u1_arm64.deb
Rows per page:
1-10 of 661

Related

nessus 19
cloudfoundry 1
osv 3
openvas 12
ubuntucve 1
fedora 1
debian 2
cvelist 1
prion 1
gentoo 1
redhatcve 1
mageia 1
ibm 1
nvd 1
cve 1
veracode 1
alpinelinux 1
ubuntu 1
debiancve 1
centos 1
redhat 1
oraclelinux 1
nessus
nessus
Fedora 24 : libXpm (2017-6d6e2bfd1a)
2017-01-31 00:00:00
SUSE SLED12 / SLES12 Security Update : libXpm (SUSE-SU-2017:0467-1)
2017-02-16 00:00:00
openSUSE Security Update : libXpm (openSUSE-2017-292)
2017-02-24 00:00:00
cloudfoundry
cloudfoundry
USN-3185-1: libXpm vulnerability | Cloud Foundry
2017-03-17 00:00:00
osv
osv
libxpm - security update
2017-01-26 00:00:00
CVE-2016-10164
2017-02-01 15:59:00
libxpm - security update
2017-01-26 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2017-0035)
2022-01-28 00:00:00
Ubuntu: Security Advisory (USN-3185-1)
2017-02-03 00:00:00
SUSE: Security Advisory (SUSE-SU-2017:0467-1)
2021-04-19 00:00:00
ubuntucve
ubuntucve
CVE-2016-10164
2016-12-31 00:00:00
fedora
fedora
[SECURITY] Fedora 24 Update: libXpm-3.5.12-1.fc24
2017-01-29 22:19:20
debian
debian
[SECURITY] [DSA 3772-1] libxpm security update
2017-01-26 19:30:27
[SECURITY] [DLA 801-1] libxpm security update
2017-01-26 17:23:53
cvelist
cvelist
CVE-2016-10164
2017-02-01 15:00:00
prion
prion
Integer overflow
2017-02-01 15:59:00
gentoo
gentoo
libXpm: Remote execution of arbitrary code
2017-01-29 00:00:00
redhatcve
redhatcve
CVE-2016-10164
2017-01-25 13:17:34
mageia
mageia
Updated libxpm packages fix security vulnerability
2017-02-02 11:11:52
ibm
ibm
Security Bulletin: Vulnerability in libXpm affects IBM BladeCenter Advanced Management Module (AMM)
2023-04-14 14:32:25
nvd
nvd
CVE-2016-10164
2017-02-01 15:59:00
cve
cve
CVE-2016-10164
2017-02-01 15:59:00
veracode
veracode
Arbitrary Code Execution
2021-02-18 05:07:27
alpinelinux
alpinelinux
CVE-2016-10164
2017-02-01 15:59:00
ubuntu
ubuntu
libXpm vulnerability
2017-02-01 00:00:00
debiancve
debiancve
CVE-2016-10164
2017-02-01 15:59:00
centos
centos
drm, libICE, libX11, libXaw, libXcursor, libXdmcp, libXfixes, libXfont, libXfont2, libXi, libXpm, libXrandr, libXrender, libXt, libXtst, libXv, libXvMC, libXxf86vm, libdrm, libepoxy, libevdev, libfontenc, libinput, libvdpau, libwacom, libxcb, libxkbcommon, libxkbfile, mesa, vulkan, xcb, xkeyboard, xorg security update
2017-08-24 01:38:44
redhat
redhat
(RHSA-2017:1865) Moderate: X.org X11 libraries security, bug fix and enhancement update
2017-08-01 05:55:26
oraclelinux
oraclelinux
X.org X11 libraries security, bug fix and enhancement update
2017-08-07 00:00:00

0.025 Low

EPSS

Percentile

90.2%

JSON
Related for DEBIAN:DSA-3772-1:323E8
nessus19cloudfoundry1osv3openvas12ubuntucve1fedora1debian2cvelist1prion1gentoo1redhatcve1mageia1ibm1nvd1cve1veracode1alpinelinux1ubuntu1debiancve1centos1redhat1oraclelinux1