Medium: lcms2

Issue Overview: A heap buffer overflow vulnerability has been identified in thesmooth2 in cmsgamma.c in lcms2-2.16 which allows a remote attacker to cause a denial of service. NOTE: the Supplier disputes this because "this is not exploitable as this function is never called on normal color...

AZL-59467 CVE-2025-29070 affecting package openjpeg2 2.3.1-12

A heap buffer overflow vulnerability has been identified in thesmooth2 in cmsgamma.c in lcms2-2.16 which allows a remote attacker to cause a denial of service. NOTE: the Supplier disputes this because "this is not exploitable as this function is never called on normal color management, is there...

DEBIAN-CVE-2025-29070

A heap buffer overflow vulnerability has been identified in thesmooth2 in cmsgamma.c in lcms2-2.16 which allows a remote attacker to cause a denial of service. NOTE: the Supplier disputes this because "this is not exploitable as this function is never called on normal color management, is there...

PT-2025-14384 · Lcms2 +1 · Lcms2 +1

Name of the Vulnerable Software and Affected Versions: lcms2 version 2.16 Description: A heap buffer overflow issue has been identified in the thesmooth2 function in cmsgamma.c that allows a remote attacker to cause a denial of service. This issue affects the lcms2 library, potentially allowing f...