Denial Of Service (DoS) Through Heap Out-of-Bounds (OOB) Read

liblcms2.so is vulnerable to denial of service DoS attacks. The vulnerability exists through a heap out-of-bound OOB read in TypeMLURead of cmstypes.c where the MLU bounds were not properly checked, causing the DoS attack...

Denial Of Service (DoS)

liblcms2.so is vulnerable to denial of service. The vulnerability exists in the AllocateDataSet function of cmscgats.c because of not limiting the size of the Data from integer multiplication, leading to an attack if a malicious IT8 calibration file is passed to the second argument to...