VYPR
Unrated severityNVD Advisory· Published Mar 23, 2009· Updated Jun 16, 2026

CVE-2009-0583

CVE-2009-0583

Description

Multiple integer overflows in icc.c in the International Color Consortium (ICC) Format library (aka icclib), as used in Ghostscript 8.64 and earlier and Argyll Color Management System (CMS) 1.0.3 and earlier, allow context-dependent attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly execute arbitrary code by using a device file for a translation request that operates on a crafted image file and targets a certain "native color space," related to an ICC profile in a (1) PostScript or (2) PDF file with embedded images.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

25
  • Argyllcms/Argyllcms10 versions
    cpe:2.3:a:argyllcms:argyllcms:*:*:*:*:*:*:*:*+ 9 more
    • cpe:2.3:a:argyllcms:argyllcms:*:*:*:*:*:*:*:*range: <=1.0.3
    • cpe:2.3:a:argyllcms:argyllcms:0.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:argyllcms:argyllcms:0.2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:argyllcms:argyllcms:0.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:argyllcms:argyllcms:0.2.2:*:*:*:*:*:*:*
    • cpe:2.3:a:argyllcms:argyllcms:0.3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:argyllcms:argyllcms:0.6.0:*:*:*:*:*:*:*
    • cpe:2.3:a:argyllcms:argyllcms:0.7.0:beta_8:*:*:*:*:*:*
    • cpe:2.3:a:argyllcms:argyllcms:1.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:argyllcms:argyllcms:1.0.2:*:*:*:*:*:*:*
  • Artifex/Ghostscript14 versions
    cpe:2.3:a:ghostscript:ghostscript:*:*:*:*:*:*:*:*+ 13 more
    • cpe:2.3:a:ghostscript:ghostscript:*:*:*:*:*:*:*:*range: <=8.64
    • cpe:2.3:a:ghostscript:ghostscript:5.50:*:*:*:*:*:*:*
    • cpe:2.3:a:ghostscript:ghostscript:7.05:*:*:*:*:*:*:*
    • cpe:2.3:a:ghostscript:ghostscript:7.07:*:*:*:*:*:*:*
    • cpe:2.3:a:ghostscript:ghostscript:8.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ghostscript:ghostscript:8.15:*:*:*:*:*:*:*
    • cpe:2.3:a:ghostscript:ghostscript:8.15.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ghostscript:ghostscript:8.54:*:*:*:*:*:*:*
    • cpe:2.3:a:ghostscript:ghostscript:8.56:*:*:*:*:*:*:*
    • cpe:2.3:a:ghostscript:ghostscript:8.57:*:*:*:*:*:*:*
    • cpe:2.3:a:ghostscript:ghostscript:8.61:*:*:*:*:*:*:*
    • cpe:2.3:a:ghostscript:ghostscript:8.62:*:*:*:*:*:*:*
    • cpe:2.3:a:ghostscript:ghostscript:8.63:*:*:*:*:*:*:*
    • (no CPE)range: <=8.64

Patches

Vulnerability mechanics

References

40

News mentions

0

No linked articles in our index yet.