CVE-2022-44617 - AskarLabs CVE Database

CVE-2022-44617

Vendor N/A

Product libXpm

Weakness CWE-20 · Input validation

Published February 6, 2023

Last update March 25, 2025

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

A flaw was found in libXpm. When processing a file with width of 0 and a very large height, some parser functions will be called repeatedly and can lead to an infinite loop, resulting in a Denial of Service in the application linked to the library.

Key dates

02Disclosure timeline

February 6, 2023 CVE published

March 25, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2022-44617 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/20.html

Related vulnerabilities

04Related CVE

CVE-2026-4407 Out-of-bounds array write in Xpdf 4.06 due to missing validation CVE-2022-28763 Improper URL parsing in Zoom Clients CVE-2023-38495 Crossplane vulnerable to possible image tampering from missing image validation for Packages CVE-2022-20679 Cisco IOS XE Software IPSec Denial of Service Vulnerability CVE-2025-31132 Raven allows Remote Code Execution due to improper validation