SuSE Inc. Information for VU#537878

libXpm library contains multiple integer overflow vulnerabilities

Status

Affected

Vendor Statement

Suse has already released our updates for libXpm.

http://www.suse.de/de/security/2004_34_xfree86_libs_xshared.html

Customers can update their systems by using theYaST Online Update (YOU) tool or installing the RPM file directly from
http://www.suse.de/en/private/download/updates/index.html.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References

None

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.