Unrated severityNVD Advisory· Published Oct 12, 2023· Updated Nov 6, 2025
Libxpm: out of bounds read on xpm with corrupted colormap
CVE-2023-43789
Description
A vulnerability was found in libXpm where a vulnerability exists due to a boundary condition, a local user can trigger an out-of-bounds read error and read contents of memory on the system.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
20- osv-coords18 versionspkg:rpm/almalinux/libXpmpkg:rpm/almalinux/libXpm-develpkg:rpm/almalinux/motifpkg:rpm/almalinux/motif-develpkg:rpm/almalinux/motif-staticpkg:rpm/opensuse/libXpm&distro=openSUSE%20Leap%2015.4pkg:rpm/opensuse/libXpm&distro=openSUSE%20Leap%2015.5pkg:rpm/suse/libXpm&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4pkg:rpm/suse/libXpm&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5pkg:rpm/suse/libXpm&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP4pkg:rpm/suse/libXpm&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP5pkg:rpm/suse/libXpm&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/libXpm&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5pkg:rpm/suse/libXpm&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/libXpm&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP4pkg:rpm/suse/libXpm&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP5pkg:rpm/suse/libXpm&distro=SUSE%20Manager%20Proxy%204.2pkg:rpm/suse/libXpm&distro=SUSE%20Manager%20Server%204.2
< 3.5.13-10.el9+ 17 more
- (no CPE)range: < 3.5.13-10.el9
- (no CPE)range: < 3.5.13-10.el9
- (no CPE)range: < 2.3.4-28.el9
- (no CPE)range: < 2.3.4-28.el9
- (no CPE)range: < 2.3.4-20.el8
- (no CPE)range: < 3.5.12-150000.3.10.1
- (no CPE)range: < 3.5.12-150000.3.10.1
- (no CPE)range: < 3.5.12-150000.3.10.1
- (no CPE)range: < 3.5.12-150000.3.10.1
- (no CPE)range: < 3.5.12-150000.3.10.1
- (no CPE)range: < 3.5.12-150000.3.10.1
- (no CPE)range: < 3.5.11-6.10.1
- (no CPE)range: < 3.5.11-6.10.1
- (no CPE)range: < 3.5.11-6.10.1
- (no CPE)range: < 3.5.12-150000.3.10.1
- (no CPE)range: < 3.5.12-150000.3.10.1
- (no CPE)range: < 3.5.12-150000.3.10.1
- (no CPE)range: < 3.5.12-150000.3.10.1
Patches
Vulnerability mechanics
References
6- access.redhat.com/errata/RHSA-2024:2146mitrevendor-advisoryx_refsource_REDHAT
- access.redhat.com/errata/RHSA-2024:2217mitrevendor-advisoryx_refsource_REDHAT
- access.redhat.com/errata/RHSA-2024:2974mitrevendor-advisoryx_refsource_REDHAT
- access.redhat.com/errata/RHSA-2024:3022mitrevendor-advisoryx_refsource_REDHAT
- access.redhat.com/security/cve/CVE-2023-43789mitrevdb-entryx_refsource_REDHAT
- bugzilla.redhat.com/show_bug.cgimitreissue-trackingx_refsource_REDHAT
News mentions
0No linked articles in our index yet.