[SECURITY] [DSA 5516-1] libxpm security update

To: debian-security-announce@lists.debian.org
Subject: [SECURITY] [DSA 5516-1] libxpm security update
From: Moritz Muehlenhoff <jmm@debian.org>
Date: Thu, 5 Oct 2023 18:17:01 +0000
Message-id: <[🔎] ZR79nX7B7wVT8R2S@seger.debian.org>
Reply-to: debian-security-announce-request@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5516-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
October 05, 2023                      https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : libxpm
CVE ID         : CVE-2023-43788 CVE-2023-43789

Multiple security vulnerabilities were discovered in libxpm, the X11
pixmap library, which may result in denial of service or the execution
of arbitrary code.

For the oldstable distribution (bullseye), these problems have been fixed
in version 1:3.5.12-1.1+deb11u1.

For the stable distribution (bookworm), these problems have been fixed in
version 1:3.5.12-1.1+deb12u1.

We recommend that you upgrade your libxpm packages.

For the detailed security status of libxpm please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/libxpm

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=nUCe
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DSA 5515-1] chromium security update
Next by Date: [SECURITY] [DSA 5517-1] libx11 security update
Previous by thread: [SECURITY] [DSA 5515-1] chromium security update
Next by thread: [SECURITY] [DSA 5517-1] libx11 security update
Index(es):
- Date
- Thread