PatchSiren

PatchSiren cyber security CVE debrief

CVE-2026-4367 Red Hat CVE debrief

CVE-2026-4367 is a MEDIUM-severity vulnerability in libXpm, a library for handling X PixMap (XPM) images. The vulnerability, with a CVSS score of 5.5, allows a local user with low privileges to exploit an Out-of-Bounds Read vulnerability in the `xpmNextWord()` function. This can be done by processing a specially crafted or very small XPM image file, which can cause an internal pointer to read beyond the file's end. This improper validation of file boundaries can lead to application crashes and Denial of Service (DoS) conditions.

Vendor
Red Hat
Product
Red Hat Enterprise Linux 10
CVSS
MEDIUM 5.5
CISA KEV
Not listed in stored evidence
Original CVE published
2026-06-16
Original CVE updated
2026-06-16
Advisory published
2026-06-16
Advisory updated
2026-06-16

Who should care

Users of libXpm, particularly those in Linux environments, should be aware of this vulnerability. It may affect various Linux distributions and applications that utilize libXpm for image processing.

Technical summary

The vulnerability is caused by an Out-of-Bounds Read in the `xpmNextWord()` function of libXpm. This function fails to properly validate the boundaries of XPM image files, allowing a local attacker with low privileges to cause the application to crash or potentially execute arbitrary code.

Defensive priority

MEDIUM

Recommended defensive actions

  • Apply patches or updates provided by the libXpm maintainers or Linux distribution vendors as soon as they become available.
  • Restrict access to XPM image files to prevent low-privileged users from exploiting the vulnerability.
  • Monitor for and respond to potential DoS conditions that could arise from exploitation of this vulnerability.

Evidence notes

The CVE record and details were obtained from official sources, including the CVE website and the NVD database.

Official resources

CVE-2026-4367 was published on 2026-06-16T19:16:59.233Z and modified on 2026-06-16T20:42:25.013Z.