CVE-2023-43788: Out-of-bounds Read

October 10, 2023 (updated December 22, 2023)

A vulnerability was found in libXpm due to a boundary condition within the XpmCreateXpmImageFromBuffer() function. This flaw allows a local to trigger an out-of-bounds read error and read the contents of memory on the system.

References

access.redhat.com/security/cve/CVE-2023-43788
bugzilla.redhat.com/show_bug.cgi?id=2242248
lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/V6FARGWN7VWXXWPXYNEEDJLRR3EWFZ3T/
nvd.nist.gov/vuln/detail/CVE-2023-43788

Code Behaviors & Features

Detect and mitigate CVE-2023-43788 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →