A vulnerability was found in libXpm where a vulnerability exists due to a boundary condition, a local user can trigger an out-of-bounds read error and read contents of memory on the system.
Created libXpm tracking bugs for this issue: Affects: fedora-all [bug 2243048]
Dhananjay, Any Xpm CVE also needs a ticket filed in the motif component as well (since it has an in-tree copy of Xpm). Would you mind taking care of those?
Created motif tracking bugs for this issue: Affects: fedora-all [bug 2248829]
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2024:2146 https://access.redhat.com/errata/RHSA-2024:2146
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2024:2217 https://access.redhat.com/errata/RHSA-2024:2217