#VU71234 Infinite loop in libXpm - CVE-2022-46285

Cybersecurity Help s.r.o.

Published: 2023-01-17 | Updated: 2023-01-20

Vulnerability identifier: #VU71234

Vulnerability risk: Low

CVSSv4.0: 2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2022-46285

CWE-ID: CWE-835

Exploitation vector: Network

Exploit availability: Yes

Vulnerable software:
libXpm
Other software / Other software solutions

Vendor: xorg.freedesktop.org

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop when handling unclosed comments in XPM images within the ParseComment() function. A remote attacker can trick the victim to open a specially crafted image and cause denial of service conditions.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

libXpm: 3.5.4.2 - 3.5.14

External links
https://lists.x.org/archives/xorg-announce/2023-January/003312.html
https://gitlab.freedesktop.org/xorg/lib/libxpm/-/commit/a3a7c6dcc3b629d7650148

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

Latest bulletins with this vulnerability

openEuler update for motif

Gentoo update for libXpm

Amazon Linux AMI update for libXpm

Multiple vulnerabilities in Dell Data Lakehouse System Software

Multiple vulnerabilities in Dell EMC Enterprise SONiC

Multiple vulnerabilities in Dell PowerStore Family

Fedora 36 update for libXpm

Fedora 37 update for libXpm

Ubuntu update for libxpm

Multiple vulnerabilities in Dell PowerProtect Cyber Recovery