Martin Ettl

**Name of the Vulnerable Software and Affected Versions** libXpm (affected versions not specified) **Description** A flaw was found in libXpm. When processing a file with a width of 0 and a very large height, some parser functions will be called repeatedly and can lead to an infinite loop, resulting in a Denial of Service in the application linked to the library. The vulnerability is related to insufficient input validation in the `ParsePixels()` function. This can be exploited by a remote attacker using a specially crafted XPM file with a width set to 0, leading to a Denial of Service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.