CVE-2004-0688 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2004-0688 Interim 1 4 2023-12-09T02:25:01Z current 2021-05-30T12:30:20Z 2023-12-09T02:25:01Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2004-0688 Multiple integer overflows in (1) the xpmParseColors function in parse.c, (2) XpmCreateImageFromXpmImage, (3) CreateXImage, (4) ParsePixels, and (5) ParseAndPutPixels for libXpm before 6.8.1 may allow remote attackers to execute arbitrary code via a malformed XPM image file. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/C7PSNIUXYF5NWCFW3OOCXDUSJ6C3JLWF/#C7PSNIUXYF5NWCFW3OOCXDUSJ6C3JLWF E-Mail link for SUSE-SA:2004:034 https://www.suse.com/support/security/rating/ SUSE Security Ratings Multiple integer overflows in (1) the xpmParseColors function in parse.c, (2) XpmCreateImageFromXpmImage, (3) CreateXImage, (4) ParsePixels, and (5) ParseAndPutPixels for libXpm before 6.8.1 may allow remote attackers to execute arbitrary code via a malformed XPM image file. CVE-2004-0688 important 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P