Format: 1.8 Date: Mon, 02 Oct 2023 16:12:10 -0400 Source: libxpm Binary: libxpm-dev libxpm4 xpmutils Architecture: armhf armhf_translations Version: 1:3.5.12-1ubuntu0.20.04.2 Distribution: focal Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: libxpm-dev - X11 pixmap library (development headers) libxpm4 - X11 pixmap library xpmutils - X11 pixmap utilities Changes: libxpm (1:3.5.12-1ubuntu0.20.04.2) focal-security; urgency=medium . * SECURITY UPDATE: stack exhaustion from infinite recursion in PutSubImage() in libx11 - d/p/0004-test-Add-test-case-for-CVE-2023-43786-stack-exhausti.patch - d/p/0005-Avoid-CVE-2023-43786-stack-exhaustion-in-XPutImage.patch - CVE-2023-43786 * SECURITY UPDATE: integer overflow in XCreateImage() leading to a heap overflow in libx11 - d/p/0006-test-Add-test-case-for-CVE-2023-43787-integer-overfl.patch - d/p/0007-Avoid-CVE-2023-43787-integer-overflow-in-XCreateImag.patch - CVE-2023-43787 * SECURITY UPDATE: out of bounds read in XpmCreateXpmImageFromBuffer() - d/p/0001-Fix-CVE-2023-43788-Out-of-bounds-read-in-XpmCreateXp.patch - CVE-2023-43788 * SECURITY UPDATE: out of bounds read on XPM with corrupted colormap - d/p/0003-Fix-CVE-2023-43789-Out-of-bounds-read-on-XPM-with-co.patch - CVE-2023-43789 Checksums-Sha1: 27a94590147a17f7755a81201e8b5a6d0d9af7f9 83228 libxpm-dev_3.5.12-1ubuntu0.20.04.2_armhf.deb 9c276fd0e208c5e7457d13e10328d511ec83c2ea 104580 libxpm4-dbgsym_3.5.12-1ubuntu0.20.04.2_armhf.ddeb 2ebf81f1f2de692bf4464466ab08fe782f3866ce 29480 libxpm4_3.5.12-1ubuntu0.20.04.2_armhf.deb 8b78c5b518ba3de7e36719832bc9bc17ed02c6cc 7528 libxpm_3.5.12-1ubuntu0.20.04.2_armhf.buildinfo 8ef8ed37b1976993f47d50bc81abf460e1109fd4 2178 libxpm_3.5.12-1ubuntu0.20.04.2_armhf_translations.tar.gz b7b9c40fc7c2b797b3e9fc97c4fffadfcc4e576e 51584 xpmutils-dbgsym_3.5.12-1ubuntu0.20.04.2_armhf.ddeb 4568f0b4c187b622e1af414bb3c6a776265936b2 19328 xpmutils_3.5.12-1ubuntu0.20.04.2_armhf.deb Checksums-Sha256: 119e30de066b8cd77587d72ac22cb115415d215e9c5aa342fdbe7a7b3e09ade5 83228 libxpm-dev_3.5.12-1ubuntu0.20.04.2_armhf.deb e2ae3f2d2724a9ee060dd09339d9233fd9ceff4127f276e25673d2daae75ab17 104580 libxpm4-dbgsym_3.5.12-1ubuntu0.20.04.2_armhf.ddeb a781484dd42e6a53dc102c97dbd8bdf440c949564a9096fdccd98e68a97eba5f 29480 libxpm4_3.5.12-1ubuntu0.20.04.2_armhf.deb 4b8a04b1bcd16c998145c78a839c5f3f8c9f60c7952043f98cf9e9a2631a8610 7528 libxpm_3.5.12-1ubuntu0.20.04.2_armhf.buildinfo 588139430979b51e6627a941752a9db466aa8bd9fa11f03ac46f3dd1597076f0 2178 libxpm_3.5.12-1ubuntu0.20.04.2_armhf_translations.tar.gz 65b568d55767efb54c75ee8aa02c6bf60bb7c045641b9315e454e2f2f8d3bde3 51584 xpmutils-dbgsym_3.5.12-1ubuntu0.20.04.2_armhf.ddeb e1237fcc894c523b78ada9a12d9822159eecc99b044cc040b2dea581242ce2b1 19328 xpmutils_3.5.12-1ubuntu0.20.04.2_armhf.deb Files: 3836612a36a8ddc64570f8de25f687e9 83228 libdevel optional libxpm-dev_3.5.12-1ubuntu0.20.04.2_armhf.deb 4a8150e8a264e41c9d8490350b684d1f 104580 debug optional libxpm4-dbgsym_3.5.12-1ubuntu0.20.04.2_armhf.ddeb fcc868bfd3ee9695a39a822a5b2879d7 29480 libs optional libxpm4_3.5.12-1ubuntu0.20.04.2_armhf.deb 1d19e183d72e47b0753984464e7faed2 7528 x11 optional libxpm_3.5.12-1ubuntu0.20.04.2_armhf.buildinfo d5aeb09df1bc6183edcd761403529972 2178 raw-translations - libxpm_3.5.12-1ubuntu0.20.04.2_armhf_translations.tar.gz 126374eac3bfd0917644a5287de846f7 51584 debug optional xpmutils-dbgsym_3.5.12-1ubuntu0.20.04.2_armhf.ddeb fbaecbc85959197e062eb72290f8317c 19328 x11 optional xpmutils_3.5.12-1ubuntu0.20.04.2_armhf.deb Original-Maintainer: Debian X Strike Force