VYPR

rpm package

opensuse/lcms&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/lcms&distro=openSUSE%20Tumbleweed

Vulnerabilities (2)

  • CVE-2013-4276Sep 28, 2013
    affected < 1.19-19.8fixed 1.19-19.8

    Multiple stack-based buffer overflows in LittleCMS (aka lcms or liblcms) 1.19 and earlier allow remote attackers to cause a denial of service (crash) via a crafted (1) ICC color profile to the icctrans utility or (2) TIFF image to the tiffdiff utility.

  • CVE-2009-0793Apr 9, 2009
    affected < 1.19-19.8fixed 1.19-19.8

    cmsxform.c in LittleCMS (aka lcms or liblcms) 1.18, as used in OpenJDK and other products, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted image that triggers execution of incorrect code for "transformations of m