Debian Information for VU#537878

libXpm library contains multiple integer overflow vulnerabilities

Status

Affected

Vendor Statement

The Debian operating system is vulnerable to this problem. Fixed packageshave been prepared.

      For the stable distribution (woody) this problem has been fixed in version 0.93.18-5 of lesstif1-1.

      For the unstable distribution (sid) this problem has been fixed in version 0.93.94-10 of lesstif1-1.

      Vendor Information

      The vendor has not provided us with any further information regarding this vulnerability.

      Vendor References

      None

      Addendum

      The CERT/CC has no additional comments at this time.

      If you have feedback, comments, or additional information about this vulnerability, please send us email.