9 matches found
SLES10: Security update for liblcms,liblcms-devel
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: liblcms liblcms-devel More details may also be found by searching for the SuSE Enterprise Server 10 patch database located at...
SLES10: Security update for liblcms, liblcms-devel
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: liblcms liblcms-devel More details may also be found by searching for the SuSE Enterprise Server 10 patch database linked in the references...
SLES9: Security update for liblcms, liblcms-devel
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: liblcms liblcms-devel For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5021001...
SuSE9 Security Update : liblcms,liblcms-devel (YOU Patch Number 11955)
Various security issues in liblcms have been found that occur while parsing ICC profiles in JPEG images. A remote attacker can exploit these bugs to execute arbitrary commands or cause denial-of-service by tricking the user to view a specially crafted JPEG image. This issue has been tracked by...
Buffer overflow
Buffer overflow in the ReadEmbeddedTextTag function in src/cmsio1.c in Little cms color engine aka lcms before 1.16 allows attackers to have an unknown impact via vectors related to a length parameter inconsistency involving the contents of "the input file," a different vulnerability than...
CVE-2008-5316
Buffer overflow in the ReadEmbeddedTextTag function in src/cmsio1.c in Little cms color engine aka lcms before 1.16 allows attackers to have an unknown impact via vectors related to a length parameter inconsistency involving the contents of "the input file," a different vulnerability than...
SuSE 10 Security Update : liblcms,liblcms-devel (ZYPP Patch Number 4626)
This update addresses security bugs in liblcms that occurred while parsing ICC profiles in JPEG images. CVE-2007-2741 Remote attackers can exploit this bug to execute arbitrary commands or cause denial-of-service. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this...
openSUSE 10 Security Update : liblcms (liblcms-4629)
This update addresses security bugs in liblcms that occurred while parsing ICC profiles in JPEG images. CVE-2007-2741 Remote attackers can exploit this bug to execute arbitrary commands or cause denial-of-service. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and packa...
CVE-2007-2741
CVE-2007-2741 attests a stack-based buffer overflow in Little CMS (lcms) prior to 1.15. A crafted ICC profile embedded in a JPG can trigger remote code execution or cause an application crash/DoS. Affected software is Little CMS; root cause is a overflow in handling ICC profiles in JPEG input. Th...