LittleCMS vulnerability

2008-12-1700:00:00

ubuntu.com

7.3 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.012 Low

EPSS

Percentile

85.0%

JSON

Releases

Ubuntu 8.10
Ubuntu 8.04
Ubuntu 7.10

Packages

lcms -

Details

It was discovered that certain gamma operations in lcms were not
correctly bounds-checked. If a user or automated system were tricked into
processing a malicious image, a remote attacker could crash applications
linked against liblcms1, leading to a denial of service, or possibly
execute arbitrary code with user privileges.

OSVersionArchitecturePackageVersionFilename
Ubuntu8.10noarchliblcms1< 1.16-10ubuntu0.1UNKNOWN
Ubuntu8.10noarchliblcms-utils< 1.16-10ubuntu0.1UNKNOWN
Ubuntu8.10noarchliblcms1< dev-1.16-10ubuntu0.1UNKNOWN
Ubuntu8.10noarchpython-liblcms< 1.16-10ubuntu0.1UNKNOWN
Ubuntu8.04noarchliblcms1< 1.16-7ubuntu1.1UNKNOWN
Ubuntu8.04noarchliblcms-utils< 1.16-7ubuntu1.1UNKNOWN
Ubuntu8.04noarchliblcms1-dev< 1.16-7ubuntu1.1UNKNOWN
Ubuntu8.04noarchpython-liblcms< 1.16-7ubuntu1.1UNKNOWN
Ubuntu7.10noarchliblcms1< 1.16-5ubuntu3.1UNKNOWN
Ubuntu7.10noarchliblcms-utils< 1.16-5ubuntu3.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Ubuntu	8.10	noarch	liblcms1	< 1.16-10ubuntu0.1	UNKNOWN
Ubuntu	8.10	noarch	liblcms-utils	< 1.16-10ubuntu0.1	UNKNOWN
Ubuntu	8.10	noarch	liblcms1	< dev-1.16-10ubuntu0.1	UNKNOWN
Ubuntu	8.10	noarch	python-liblcms	< 1.16-10ubuntu0.1	UNKNOWN
Ubuntu	8.04	noarch	liblcms1	< 1.16-7ubuntu1.1	UNKNOWN
Ubuntu	8.04	noarch	liblcms-utils	< 1.16-7ubuntu1.1	UNKNOWN
Ubuntu	8.04	noarch	liblcms1-dev	< 1.16-7ubuntu1.1	UNKNOWN
Ubuntu	8.04	noarch	python-liblcms	< 1.16-7ubuntu1.1	UNKNOWN
Ubuntu	7.10	noarch	liblcms1	< 1.16-5ubuntu3.1	UNKNOWN
Ubuntu	7.10	noarch	liblcms-utils	< 1.16-5ubuntu3.1	UNKNOWN