Lucene search
K

97 matches found

NVD
NVD
added 2009/04/09 3:8 p.m.16 views

CVE-2009-0793

cmsxform.c in LittleCMS aka lcms or liblcms 1.18, as used in OpenJDK and other products, allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted image that triggers execution of incorrect code for "transformations of monochrome profiles."...

4.3CVSS6.5AI score0.04834EPSS
Exploits0References26
UbuntuCve
UbuntuCve
added 2009/04/09 3:8 p.m.26 views

CVE-2009-0793

cmsxform.c in LittleCMS aka lcms or liblcms 1.18, as used in OpenJDK and other products, allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted image that triggers execution of incorrect code for "transformations of monochrome profiles."...

4.3CVSS6.2AI score0.04834EPSS
Exploits0References3
Cvelist
Cvelist
added 2009/04/09 3:0 p.m.19 views

CVE-2009-0793

cmsxform.c in LittleCMS aka lcms or liblcms 1.18, as used in OpenJDK and other products, allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted image that triggers execution of incorrect code for "transformations of monochrome profiles."...

6.5AI score0.04834EPSS
Exploits0References26
CVE
CVE
added 2009/04/09 3:0 p.m.102 views

CVE-2009-0793

CVE-2009-0793 affects LittleCMS (lcms) 1.18, specifically cmsxform.c handling transformations of monochrome profiles. The issue enables a remote attacker to cause a denial of service (NULL pointer dereference and application crash) via a crafted image that triggers incorrect code execution in mon...

4.3CVSS6.6AI score0.04834EPSS
Exploits0References26Affected Software2
Cent OS
Cent OS
added 2009/04/08 11:56 a.m.86 views

java security update

CentOS Errata and Security Advisory CESA-2009:0377 Updated java-1.6.0-openjdk packages that fix several security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. These packages provide th...

10CVSS6.7AI score0.12692EPSS
Exploits5References7
Tenable Nessus
Tenable Nessus
added 2009/04/08 12:0 a.m.46 views

RHEL 5 : java-1.6.0-openjdk (RHSA-2009:0377)

Updated java-1.6.0-openjdk packages that fix several security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. These packages provide the OpenJDK 6 Java Runtime Environment and the OpenJD...

10CVSS6.4AI score0.12692EPSS
Exploits5References28
RedHat Linux
RedHat Linux
added 2009/04/07 6:36 p.m.2 views

lcms: Null pointer dereference (DoS) by handling transformations of monochrome profiles

cmsxform.c in LittleCMS aka lcms or liblcms 1.18, as used in OpenJDK and other products, allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted image that triggers execution of incorrect code for "transformations of monochrome profiles."...

4.3CVSS6.1AI score0.04834EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2009/04/07 6:36 p.m.6 views

LittleCms integer overflow

Multiple integer overflows in LittleCMS aka lcms or liblcms before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent attackers to execute arbitrary code via a crafted image file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained fr...

9.3CVSS6.5AI score0.05027EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2009/04/07 6:36 p.m.5 views

LittleCms lack of upper-bounds check on sizes

Multiple stack-based buffer overflows in the ReadSetOfCurves function in LittleCMS aka lcms or liblcms before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent attackers to execute arbitrary code via a crafted image file associated with a large integer value for th...

9.3CVSS6.5AI score0.05534EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2009/04/07 6:36 p.m.5 views

LittleCms memory leak

Memory leak in LittleCMS aka lcms or liblcms before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allows context-dependent attackers to cause a denial of service memory consumption and application crash via a crafted image file...

4.3CVSS5.8AI score0.02502EPSS
Exploits2References4
Ubuntu
Ubuntu
added 2009/03/23 6:32 p.m.64 views

USN-744-1: LittleCMS vulnerabilities

Chris Evans discovered that LittleCMS did not properly handle certain error conditions, resulting in a large memory leak. If a user or automated system were tricked into processing an image with malicious ICC tags, a remote attacker could cause a denial of service. CVE-2009-0581 Chris Evans...

9.3CVSS6.4AI score0.05534EPSS
Exploits4
NVD
NVD
added 2009/03/23 2:19 p.m.20 views

CVE-2009-0733

Multiple stack-based buffer overflows in the ReadSetOfCurves function in LittleCMS aka lcms or liblcms before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent attackers to execute arbitrary code via a crafted image file associated with a large integer value for th...

9.3CVSS7.4AI score0.05534EPSS
Exploits2References41
NVD
NVD
added 2009/03/23 2:19 p.m.20 views

CVE-2009-0723

Multiple integer overflows in LittleCMS aka lcms or liblcms before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent attackers to execute arbitrary code via a crafted image file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained fr...

9.3CVSS7.4AI score0.05027EPSS
Exploits2References41
NVD
NVD
added 2009/03/23 2:19 p.m.19 views

CVE-2009-0581

Memory leak in LittleCMS aka lcms or liblcms before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allows context-dependent attackers to cause a denial of service memory consumption and application crash via a crafted image file...

4.3CVSS6.1AI score0.02502EPSS
Exploits2References41
Prion
Prion
added 2009/03/23 2:19 p.m.19 views

Integer overflow

Multiple integer overflows in LittleCMS aka lcms or liblcms before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent attackers to execute arbitrary code via a crafted image file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained fr...

9.3CVSS8.1AI score0.05027EPSS
Exploits2References41Affected Software3
Prion
Prion
added 2009/03/23 2:19 p.m.19 views

Stack overflow

Multiple stack-based buffer overflows in the ReadSetOfCurves function in LittleCMS aka lcms or liblcms before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent attackers to execute arbitrary code via a crafted image file associated with a large integer value for th...

9.3CVSS8.1AI score0.05534EPSS
Exploits2References41Affected Software3
UbuntuCve
UbuntuCve
added 2009/03/23 2:19 p.m.43 views

CVE-2009-0733

Multiple stack-based buffer overflows in the ReadSetOfCurves function in LittleCMS aka lcms or liblcms before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent attackers to execute arbitrary code via a crafted image file associated with a large integer value for th...

9.3CVSS6.2AI score0.05534EPSS
Exploits2References2
UbuntuCve
UbuntuCve
added 2009/03/23 2:19 p.m.34 views

CVE-2009-0723

Multiple integer overflows in LittleCMS aka lcms or liblcms before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent attackers to execute arbitrary code via a crafted image file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained fr...

9.3CVSS6.5AI score0.05027EPSS
Exploits2References2
UbuntuCve
UbuntuCve
added 2009/03/23 2:19 p.m.28 views

CVE-2009-0581

Memory leak in LittleCMS aka lcms or liblcms before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allows context-dependent attackers to cause a denial of service memory consumption and application crash via a crafted image file...

4.3CVSS5.9AI score0.02502EPSS
Exploits2References2
Prion
Prion
added 2009/03/23 2:19 p.m.20 views

Memory corruption

Memory leak in LittleCMS aka lcms or liblcms before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allows context-dependent attackers to cause a denial of service memory consumption and application crash via a crafted image file...

4.3CVSS6.8AI score0.02502EPSS
Exploits2References41Affected Software3
Rows per page
Query Builder