Alerts This Week
Warning Icon 1 525
Alerts This Week
Warning Icon 1 525

Stay Secure with the Latest Linux Advisories

Fedora Large Esm H800
Fedora

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Calendar White Jun 02, 2026
Important
Oracle Large Esm H900
Oracle

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Calendar White Jun 02, 2026
Important
Oracle Large Esm H800
Oracle

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Calendar White Jun 02, 2026
moderate
Oracle Large Esm H900
Oracle

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Calendar White Jun 03, 2026
Critical
Ubuntu Large Esm H800
Ubuntu

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Calendar White Jun 03, 2026
Important
Ubuntu Large Esm H900
Ubuntu

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Calendar White Jun 03, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 5 articles for you...
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorydenial of servicecode execution

Ubuntu 18.04 LTS: USN-6408-2 Critical: LibXpm Denial of Service

Several security issues were fixed in libXpm.. ========================================================================== Ubuntu Security Notice USN-6408-2 October 23, 2023 libxpm vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 18.04 LTS (Available with Ubuntu Pro) - Ubuntu 16.04 LTS (Available with Ubuntu Pro) - Ubuntu 14.04 LTS (Available with Ubuntu Pro) Summary: Several security issues were fixed in libXpm. Software Description: - libxpm: X11 pixmap library Details: USN-6408-1 fixed several vulnerabilities in libXpm. This update provides the corresponding update for Ubuntu 14.04 LTS, Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Original advisory details: Yair Mizrahi discovered that libXpm incorrectly handled certain malformed XPM image files. If a user were tricked into opening a specially crafted XPM image file, a remote attacker could possibly use this issue to consume memory, leading to a denial of service. (CVE-2023-43786) Yair Mizrahi discovered that libXpm incorrectly handled certain malformed XPM image files. If a user were tricked into opening a specially crafted XPM image file, a remote attacker could use this issue to cause libXpm to crash, leading to a denial of service, or possibly execute arbitrary code. (CVE-2023-43787) Alan Coopersmith discovered that libXpm incorrectly handled certain malformed XPM image files. If a user were tricked into opening a specially crafted XPM image file, a remote attacker could possibly use this issue to cause libXpm to crash, leading to a denial of service. (CVE-2023-43788, CVE-2023-43789) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 18.04 LTS (Available with Ubuntu Pro): libxpm4 1:3.5.12-1ubuntu0.18.04.2+esm1 Ubuntu 16.04 LTS (Available with Ubuntu Pro): libxpm4 1:3.5.11-1ubuntu0.16.04.1+esm2 Ubuntu 14.04 LTS (Available with Ubuntu Pro): libxpm4 1:3.5.10-1ubuntu0.1+esm2 After a standard system update you need to reboot your computer to make all the necessary changes. References: https://ubuntu.com/security/notices/USN-6408-2 https://ubuntu.com/security/notices/USN-6408-1 CVE-2023-43786, CVE-2023-43787, CVE-2023-43788, CVE-2023-43789 . Essential patch for Ubuntu targeting libXpm vulnerabilities, eliminating risks of Denial of Service and potential arbitrary code execution threats.. Ubuntu Security, LibXpm Fixes, Denial of Service, Software Updates, Image File Issues. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Oct 23, 2023 Critical Ubuntu
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorysecurity issuemoderate severity

Mageia: 2023-0293 Low: Libxpm Buffer Overflow Vulnerability

A vulnerability was found in libXpm due to a boundary condition within the XpmCreateXpmImageFromBuffer() function. This flaw allows a local to trigger an out-of-bounds read error and read the contents of memory on the system. (CVE-2023-43788) . MGASA-2023-0292 - Updated libxpm packages fix security vulnerabilities Publication date: 20 Oct 2023 URL: https://advisories.mageia.org/MGASA-2023-0292.html Type: security Affected Mageia releases: 8, 9 CVE: CVE-2023-43788, CVE-2023-43789 A vulnerability was found in libXpm due to a boundary condition within the XpmCreateXpmImageFromBuffer() function. This flaw allows a local to trigger an out-of-bounds read error and read the contents of memory on the system. (CVE-2023-43788) Out of bounds read on XPM with corrupted colormap. (CVE-2023-43789) References: - https://bugs.mageia.org/show_bug.cgi?id=32359 - https://www.openwall.com/lists/oss-security/2023/10/03/1 - https://www.cve.org/CVERecord?id=CVE-2023-43788 - https://www.cve.org/CVERecord?id=CVE-2023-43789 SRPMS: - 9/core/libxpm-3.5.15-1.1.mga9 - 8/core/libxpm-3.5.15-1.1.mga8 . Mageia has released updates for the libxpm packages to fix serious security vulnerabilities and to mitigate memory leak concerns on impacted systems.. Mageia Security Update, libxpm Vulnerability, Software Patch, Memory Leak, Out-Of-Bounds Error. . Severity: Low. LinuxSecurity.com Team

Calendar 2 Oct 20, 2023 Low Mageia
Banner 3 1028x280 1708121785 1771599793
87
Ls Advisories Debian Esm H240
Price Tag 1security advisorydenial of servicesecurity update

Debian: DSA-5516-1 Moderate: Libxpm Denial Of Service Exploit

Multiple security vulnerabilities were discovered in libxpm, the X11 pixmap library, which may result in denial of service or the execution of arbitrary code. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5516-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/security/ Moritz Muehlenhoff October 05, 2023 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : libxpm CVE ID : CVE-2023-43788 CVE-2023-43789 Multiple security vulnerabilities were discovered in libxpm, the X11 pixmap library, which may result in denial of service or the execution of arbitrary code. For the oldstable distribution (bullseye), these problems have been fixed in version 1:3.5.12-1.1+deb11u1. For the stable distribution (bookworm), these problems have been fixed in version 1:3.5.12-1.1+deb12u1. We recommend that you upgrade your libxpm packages. For the detailed security status of libxpm please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/libxpm Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. . Recent vulnerabilities in libxpm addressed with the newest Debian update. Keep your system safe by applying the latest fixes.. libxpm security,debian advisory,security updates,denial of service fix,arbitrary code exploit. . LinuxSecurity.com Team

Calendar 2 Oct 05, 2023 Debian
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorydenial of servicecritical

Debian 10 Buster DLA-3603-1 Critical: Libxpm Denial of Service Issues

Several vulnerabilities were found in libXpm, the X Pixmap (XPM) image library. CVE-2023-43786 . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3603-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Emilio Pozuelo Monfort October 05, 2023 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : libxpm Version : 1:3.5.12-1+deb10u2 CVE ID : CVE-2023-43786 CVE-2023-43787 CVE-2023-43788 CVE-2023-43789 Several vulnerabilities were found in libXpm, the X Pixmap (XPM) image library. CVE-2023-43786 Yair Mizrahi discovered an infinite recursion issue when parsing crafted XPM files, which would result in denial of service. CVE-2023-43787 Yair Mizrahi discovered a buffer overflow vulnerability in libX11 when parsing crafted XPM files, which could result in denial of service or potentially the execution of arbitrary code. CVE-2023-43788 Alan Coopersmith found an out of bounds read in XpmCreateXpmImageFromBuffer, which could result in denial of service when parsing crafted XPM files. CVE-2023-43789 Alan Coopersmith discovered an out of bounds read issue when parsing corrupted colormaps, which could lead to denial of service when parsing crafted XPM files. For Debian 10 buster, these problems have been fixed in version 1:3.5.12-1+deb10u2. We recommend that you upgrade your libxpm packages. For the detailed security status of libxpm please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/libxpm Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Numerous vulnerabilities resolved in libXpm, bolstering overall security and reliability for Debian users.. Debian Long Term Support, libXpmsecurity update, image library vulnerabilities. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Oct 05, 2023 Critical Debian LTS
Banner 3 1028x280 1708121785 1771599793
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorydenial of serviceupdate instructions

Ubuntu 23.04 USN-6408-1: Risk of Denial of Service via LibXpm

Several security issues were fixed in libXpm.. ========================================================================== Ubuntu Security Notice USN-6408-1 October 03, 2023 libxpm vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 23.04 - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS Summary: Several security issues were fixed in libXpm. Software Description: - libxpm: X11 pixmap library Details: Yair Mizrahi discovered that libXpm incorrectly handled certain malformed XPM image files. If a user were tricked into opening a specially crafted XPM image file, a remote attacker could possibly use this issue to consume memory, leading to a denial of service. (CVE-2023-43786) Yair Mizrahi discovered that libXpm incorrectly handled certain malformed XPM image files. If a user were tricked into opening a specially crafted XPM image file, a remote attacker could use this issue to cause libXpm to crash, leading to a denial of service, or possibly execute arbitrary code. (CVE-2023-43787) Alan Coopersmith discovered that libXpm incorrectly handled certain malformed XPM image files. If a user were tricked into opening a specially crafted XPM image file, a remote attacker could possibly use this issue to cause libXpm to crash, leading to a denial of service. (CVE-2023-43788, CVE-2023-43789) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 23.04: libxpm4 1:3.5.12-1.1ubuntu0.1 Ubuntu 22.04 LTS: libxpm4 1:3.5.12-1ubuntu0.22.04.2 Ubuntu 20.04 LTS: libxpm4 1:3.5.12-1ubuntu0.20.04.2 After a standard system update you need to reboot your computer to make all the necessary changes. References: https://ubuntu.com/security/notices/USN-6408-1 CVE-2023-43786, CVE-2023-43787, CVE-2023-43788,CVE-2023-43789 Package Information: https://launchpad.net/ubuntu/+source/libxpm/1:3.5.12-1.1ubuntu0.1 https://launchpad.net/ubuntu/+source/libxpm/1:3.5.12-1ubuntu0.22.04.2 https://launchpad.net/ubuntu/+source/libxpm/1:3.5.12-1ubuntu0.20.04.2 . Numerous security flaws in libXpm impact various versions of Ubuntu, underscoring potential denial of service threats.. libXpm Exploit, Ubuntu Security Notice, Memory Consumption. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Oct 03, 2023 Critical Ubuntu
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorydenial of servicesecurity update

Debian 10: DLA-3459-1 Moderate: libxpm Denial of Service Exploits

libxpm is a library handling X PixMap image format (so called xpm files). xpm files are an extension of the monochrome X BitMap format specified in the X protocol, and is commonly used in traditional X applications. . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3459-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Bastien Roucariès June 20, 2023 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : libxpm Version : 1:3.5.12-1+deb10u1 CVE ID : CVE-2022-4883 CVE-2022-44617 CVE-2022-46285 libxpm is a library handling X PixMap image format (so called xpm files). xpm files are an extension of the monochrome X BitMap format specified in the X protocol, and is commonly used in traditional X applications. CVE-2022-4883 When processing files with .Z or .gz extensions, the library calls external programs to compress and uncompress files, relying on the PATH environment variable to find these programs, which could allow a malicious user to execute other programs by manipulating the PATH environment variable. CVE-2022-44617 When processing a file with width of 0 and a very large height, some parser functions will be called repeatedly and can lead to an infinite loop, resulting in a Denial of Service in the application linked to the library. CVE-2022-46285 When parsing a file with a comment not closed, an end-of-file condition will not be detected, leading to an infinite loop and resulting in a Denial of Service in the application linked to the library. For Debian 10 buster, these problems have been fixed in version 1:3.5.12-1+deb10u1. We recommend that you upgrade your libxpm packages. For the detailed security status of libxpm please refer to its security tracker pageat: https://security-tracker.debian.org/tracker/source-package/libxpm Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Update the libxpm package on Debian to resolve various security vulnerabilities identified within it. Implement measures promptly to prevent potential exploits.. libxpm update, Debian LTS advisory, image format security. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jun 20, 2023 Important Debian LTS
Banner 3 1028x280 1708121785 1771599793
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorydenial of serviceprivilege escalation

Mageia 8: 2023-0031 Critical: libXpm Privilege Escalation Risk

libXpm incorrectly handled calling external helper binaries. If libXpm was being used by a setuid binary, a local attacker could possibly use this issue to escalate privileges. (CVE-2022-4883) libXpm incorrectly handled certain XPM files. If a user or automated . MGASA-2023-0031 - Updated libxpm packages fix security vulnerability Publication date: 07 Feb 2023 URL: https://advisories.mageia.org/MGASA-2023-0031.html Type: security Affected Mageia releases: 8 CVE: CVE-2022-4883, CVE-2022-44617, CVE-2022-46285 libXpm incorrectly handled calling external helper binaries. If libXpm was being used by a setuid binary, a local attacker could possibly use this issue to escalate privileges. (CVE-2022-4883) libXpm incorrectly handled certain XPM files. If a user or automated system were tricked into opening a specially crafted XPM file, a remote attacker could possibly use this issue to cause libXpm to stop responding, resulting in a denial of service. (CVE-2022-44617, CVE-2022-46285) References: - https://bugs.mageia.org/show_bug.cgi?id=31425 - https://lists.x.org/archives/xorg-announce/2023-January/003312.html - https://lists.x.org/archives/xorg-announce/2023-January/003313.html - https://ubuntu.com/security/notices/USN-5807-1 - https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./thread/BJ2J3EVQMPPSES6ILLTGGH5XVLNDMCRP/ - https://www.cve.org/CVERecord?id=CVE-2022-4883 - https://www.cve.org/CVERecord?id=CVE-2022-44617 - https://www.cve.org/CVERecord?id=CVE-2022-46285 SRPMS: - 8/core/libxpm-3.5.15-1.mga8 . A patch for libXpm resolves security vulnerabilities related to privilege escalation and denial of service in the Mageia operating system.. libxpm,security update,privilege escalation,denial of service. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Feb 07, 2023 Critical Mageia
217
Ls Advisories Oracle Esm H240
Price Tag 1security advisorysecurity issuesoftware update

Oracle Linux 7 ELSA-2023-0377 Important: LibXpm Security Fix

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: . Oracle Linux Security Advisory ELSA-2023-0377 https://linux.oracle.com/errata/ELSA-2023-0377.html The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network: aarch64: libXpm-3.5.12-2.el7_9.aarch64.rpm libXpm-devel-3.5.12-2.el7_9.aarch64.rpm SRPMS: https://oss.oracle.com:443/ol7/SRPMS-updates//libXpm-3.5.12-2.el7_9.src.rpm Related CVEs: CVE-2022-4883 Description of changes: [3.5.12-2] - Fix CVE-2022-4883: compression commands depends on $PATH (#2161715) _______________________________________________ El-errata mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. https://oss.oracle.com/mailman/listinfo/el-errata . Security Alert: ELSA-2023-0377 for Oracle Linux delivers essential updates for libXpm, tackling various security flaws and vulnerabilities.. Oracle Linux, LibXpm, Security Advisory, Important Update. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jan 24, 2023 Important Oracle
Banner 3 1028x280 1708121785 1771599793
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here