Out-of-Bounds Read Vulnerability in libXpm Affects Multiple Products
CVE-2026-4367

5.5MEDIUM

Key Information:

Vendor

Red Hat
Status
Red Hat Enterprise Linux 10
Red Hat Enterprise Linux 6
Red Hat Enterprise Linux 7
Red Hat Enterprise Linux 8
Vendor
CVE Published:
16 June 2026

What is CVE-2026-4367?

A vulnerability was identified in libXpm, where a local user with limited privileges could exploit an Out-of-Bounds Read through the function xpmNextWord(). This occurs when processing a specially crafted or extremely small XPM (X PixMap) image file. The flaw allows improper validation of file boundaries, which can result in the internal pointer accessing memory beyond the end of the file. Such exploits can lead to application crashes and Denial of Service (DoS) scenarios, potentially affecting system stability and security.

References

https://access.redhat.com/security/cve/CVE-2026-4367
vdb-entryx_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=2448984
issue-trackingx_refsource_REDHAT
https://gitlab.freedesktop.org/xorg/lib/libxpm/-/commit/5...

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Red Hat would like to thank Naoki Wakamatsu (JPCERT/CC Vulnerability Coordination Group) for reporting this issue.
.