CVE-2026-4367 | X.org libXpm up to 3.5.4 xpmNextWord out-of-bounds (5448e1bd)

Inserito da Angelo Barbosa | Apr 23, 2026 | CVE

A vulnerability identified as problematic has been detected in X.org libXpm up to 3.5.4. The affected element is the function xpmNextWord. The manipulation leads to out-of-bounds read.

This vulnerability is listed as CVE-2026-4367. The attack must be carried out from within the local network. There is no available exploit.

You should upgrade the affected component.

CVE-2026-4367 | X.org libXpm up to 3.5.4 xpmNextWord out-of-bounds (5448e1bd)

Post correlati

CVE-2025-52559 | Zulip up to 10.3 Topic Name Handler/Channel Name /digest/ cross site scripting

CVE-2025-47281 | kyverno JMESPath up to 1.14.1 non_existent_function denial of service

CVE-2022-50468 | Linux Kernel up to 5.10.162/5.15.85/6.0.15/6.1.1 cros_usbpd_notify_init return value

CVE-2018-9399 | Google Android /proc/driver/wmt_dbg out-of-bounds