Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2009:0011
HistoryJan 07, 2009 - 12:00 a.m.

(RHSA-2009:0011) Moderate: lcms security update

2009-01-0700:00:00
access.redhat.com
11

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.012 Low

EPSS

Percentile

83.4%

JSON

Little Color Management System (LittleCMS, or simply “lcms”) is a
small-footprint, speed-optimized open source color management engine.

Multiple insufficient input validation flaws were discovered in LittleCMS.
An attacker could use these flaws to create a specially-crafted image file
which could cause an application using LittleCMS to crash, or, possibly,
execute arbitrary code when opened. (CVE-2008-5316, CVE-2008-5317)

Users of lcms should upgrade to these updated packages, which contain
backported patches to correct these issues. All running applications using
lcms library must be restarted for the update to take effect.

OSVersionArchitecturePackageVersionFilename
RedHat5i386lcms-devel< 1.15-1.2.2.el5_2.2lcms-devel-1.15-1.2.2.el5_2.2.i386.rpm
RedHat5s390lcms< 1.15-1.2.2.el5_2.2lcms-1.15-1.2.2.el5_2.2.s390.rpm
RedHat5x86_64lcms< 1.15-1.2.2.el5_2.2lcms-1.15-1.2.2.el5_2.2.x86_64.rpm
RedHat5ia64lcms-devel< 1.15-1.2.2.el5_2.2lcms-devel-1.15-1.2.2.el5_2.2.ia64.rpm
RedHat5ppclcms< 1.15-1.2.2.el5_2.2lcms-1.15-1.2.2.el5_2.2.ppc.rpm
RedHat5srclcms< 1.15-1.2.2.el5_2.2lcms-1.15-1.2.2.el5_2.2.src.rpm
RedHat5i386lcms< 1.15-1.2.2.el5_2.2lcms-1.15-1.2.2.el5_2.2.i386.rpm
RedHat5x86_64lcms-devel< 1.15-1.2.2.el5_2.2lcms-devel-1.15-1.2.2.el5_2.2.x86_64.rpm
RedHat5s390xlcms< 1.15-1.2.2.el5_2.2lcms-1.15-1.2.2.el5_2.2.s390x.rpm
RedHat5ppclcms-devel< 1.15-1.2.2.el5_2.2lcms-devel-1.15-1.2.2.el5_2.2.ppc.rpm
Rows per page:
1-10 of 201

Related

oraclelinux 1
debian 2
openvas 12
nessus 7
centos 1
ubuntu 2
osv 1
prion 2
securityvulns 3
ubuntucve 2
cve 2
oraclelinux
oraclelinux
lcms security update
2009-01-07 00:00:00
debian
debian
[SECURITY] [DSA 1684-1] New lcms packages fix multiple vulnerabilities
2008-12-10 07:51:51
[SECURITY] [DSA 1684-1] New lcms packages fix multiple vulnerabilities
2008-12-10 07:51:43
openvas
openvas
CentOS Security Advisory CESA-2009:0011 (lcms)
2009-01-13 00:00:00
Oracle: Security Advisory (ELSA-2009-0011)
2015-10-08 00:00:00
RedHat Security Advisory RHSA-2009:0011
2009-01-07 00:00:00
nessus
nessus
Debian DSA-1684-1 : lcms - multiple vulnerabilities
2008-12-10 00:00:00
Oracle Linux 5 : lcms (ELSA-2009-0011)
2013-07-12 00:00:00
RHEL 5 : lcms (RHSA-2009:0011)
2009-01-08 00:00:00
centos
centos
lcms, python security update
2009-01-08 16:02:58
ubuntu
ubuntu
LittleCMS vulnerability
2008-10-14 00:00:00
LittleCMS vulnerability
2008-12-17 00:00:00
osv
osv
lcms - multiple vulnerabilities
2008-12-10 00:00:00
prion
prion
Integer overflow
2008-12-03 17:30:00
Buffer overflow
2008-12-03 17:30:00
securityvulns
securityvulns
[USN-693-1] LittleCMS vulnerability
2008-12-18 00:00:00
lcms multiple security vulnerabilities
2008-12-12 00:00:00
Daily web applications security vulnerabilities summary &#40;PHP, ASP, JSP, CGI, Perl&#41;
2008-12-19 00:00:00
ubuntucve
ubuntucve
CVE-2008-5317
2008-12-03 00:00:00
CVE-2008-5316
2008-12-03 00:00:00
cve
cve
CVE-2008-5317
2008-12-03 17:30:00
CVE-2008-5316
2008-12-03 17:30:00

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.012 Low

EPSS

Percentile

83.4%

JSON
Related for RHSA-2009:0011
oraclelinux1debian2openvas12nessus7centos1ubuntu2osv1prion2securityvulns3ubuntucve2cve2