ELSA-2023-0379

ULN >
Oracle Linux Errata repository >
ELSA-2023-0379

ELSA-2023-0379 - libXpm security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2023-01-24

Description

[3.5.12-9]
- Fix CVE-2022-46285: infinite loop on unclosed comments (#2161800)
- Fix CVE-2022-44617: runaway loop with width of 0 (#2161808)
- Fix CVE-2022-4883: compression depends on /usr/local/bin:/usr/bin (#2160238)

Related CVEs

CVE-2022-4883

CVE-2022-46285

CVE-2022-44617

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	libXpm-3.5.12-9.el8_7.src.rpm	1ee76ca7920bbdb7dcc6a531cb2983878e6a074455bde0be2176a65008456352	-	ol8_aarch64_appstream
	libXpm-3.5.12-9.el8_7.src.rpm	1ee76ca7920bbdb7dcc6a531cb2983878e6a074455bde0be2176a65008456352	-	ol8_aarch64_appstream_developer
	libXpm-3.5.12-9.el8_7.aarch64.rpm	09b3e32b9e785e9f9d0c763966f0984a29297d5db1e77ba49d5853907ad8a508	-	ol8_aarch64_appstream
	libXpm-3.5.12-9.el8_7.aarch64.rpm	09b3e32b9e785e9f9d0c763966f0984a29297d5db1e77ba49d5853907ad8a508	-	ol8_aarch64_appstream_developer
	libXpm-devel-3.5.12-9.el8_7.aarch64.rpm	f585dbc50a8121d4a32ee8c92dddf361f504f901a770137799817b6f9bc58339	-	ol8_aarch64_appstream
	libXpm-devel-3.5.12-9.el8_7.aarch64.rpm	f585dbc50a8121d4a32ee8c92dddf361f504f901a770137799817b6f9bc58339	-	ol8_aarch64_appstream_developer

Oracle Linux 8 (x86_64)	libXpm-3.5.12-9.el8_7.src.rpm	1ee76ca7920bbdb7dcc6a531cb2983878e6a074455bde0be2176a65008456352	-	ol8_x86_64_appstream
	libXpm-3.5.12-9.el8_7.src.rpm	1ee76ca7920bbdb7dcc6a531cb2983878e6a074455bde0be2176a65008456352	-	ol8_x86_64_appstream_developer
	libXpm-3.5.12-9.el8_7.i686.rpm	13d14f8d94e531bda54c166f4becacc3d074702e7de82d66aa18bc08a4f5a5e7	-	ol8_x86_64_appstream
	libXpm-3.5.12-9.el8_7.i686.rpm	13d14f8d94e531bda54c166f4becacc3d074702e7de82d66aa18bc08a4f5a5e7	-	ol8_x86_64_appstream_developer
	libXpm-3.5.12-9.el8_7.x86_64.rpm	b62e28858d03fe2e1898a46fcb4828911339f9a70e9f0ffc26ea6869a3aa9fec	-	exadata_dbserver_24.1.10.0.0_x86_64_base
	libXpm-3.5.12-9.el8_7.x86_64.rpm	b62e28858d03fe2e1898a46fcb4828911339f9a70e9f0ffc26ea6869a3aa9fec	-	exadata_dbserver_24.1.3.0.0_x86_64_base
	libXpm-3.5.12-9.el8_7.x86_64.rpm	b62e28858d03fe2e1898a46fcb4828911339f9a70e9f0ffc26ea6869a3aa9fec	-	exadata_dbserver_24.1.4.0.0_x86_64_base
	libXpm-3.5.12-9.el8_7.x86_64.rpm	b62e28858d03fe2e1898a46fcb4828911339f9a70e9f0ffc26ea6869a3aa9fec	-	exadata_dbserver_24.1.5.0.0_x86_64_base
	libXpm-3.5.12-9.el8_7.x86_64.rpm	b62e28858d03fe2e1898a46fcb4828911339f9a70e9f0ffc26ea6869a3aa9fec	-	exadata_dbserver_24.1.6.0.0_x86_64_base
	libXpm-3.5.12-9.el8_7.x86_64.rpm	b62e28858d03fe2e1898a46fcb4828911339f9a70e9f0ffc26ea6869a3aa9fec	-	exadata_dbserver_24.1.9.0.0_x86_64_base
	libXpm-3.5.12-9.el8_7.x86_64.rpm	b62e28858d03fe2e1898a46fcb4828911339f9a70e9f0ffc26ea6869a3aa9fec	-	exadata_dbserver_25.1.0.0.0_x86_64_base
	libXpm-3.5.12-9.el8_7.x86_64.rpm	b62e28858d03fe2e1898a46fcb4828911339f9a70e9f0ffc26ea6869a3aa9fec	-	exadata_dbserver_25.1.1.0.0_x86_64_base
	libXpm-3.5.12-9.el8_7.x86_64.rpm	b62e28858d03fe2e1898a46fcb4828911339f9a70e9f0ffc26ea6869a3aa9fec	-	exadata_dbserver_25.1.2.0.0_x86_64_base
	libXpm-3.5.12-9.el8_7.x86_64.rpm	b62e28858d03fe2e1898a46fcb4828911339f9a70e9f0ffc26ea6869a3aa9fec	-	exadata_dbserver_25.1.3.0.0_x86_64_base
	libXpm-3.5.12-9.el8_7.x86_64.rpm	b62e28858d03fe2e1898a46fcb4828911339f9a70e9f0ffc26ea6869a3aa9fec	-	ol8_x86_64_appstream
	libXpm-3.5.12-9.el8_7.x86_64.rpm	b62e28858d03fe2e1898a46fcb4828911339f9a70e9f0ffc26ea6869a3aa9fec	-	ol8_x86_64_appstream_developer
	libXpm-devel-3.5.12-9.el8_7.i686.rpm	9ae9439622e27ab67db531356868f33ded67f72064f9230deb3c617acb4717eb	-	ol8_x86_64_appstream
	libXpm-devel-3.5.12-9.el8_7.i686.rpm	9ae9439622e27ab67db531356868f33ded67f72064f9230deb3c617acb4717eb	-	ol8_x86_64_appstream_developer
	libXpm-devel-3.5.12-9.el8_7.x86_64.rpm	ce1511ea89056fcacd05fd8e2ccb693c91ea5e41f502e378be19964544c0dc29	-	ol8_x86_64_appstream
	libXpm-devel-3.5.12-9.el8_7.x86_64.rpm	ce1511ea89056fcacd05fd8e2ccb693c91ea5e41f502e378be19964544c0dc29	-	ol8_x86_64_appstream_developer

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691