Littlecms

Lcms

4 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 4.83%
  • Veröffentlicht 09.04.2009 15:08:35
  • Zuletzt bearbeitet 16.06.2026 23:05:49

cmsxform.c in LittleCMS (aka lcms or liblcms) 1.18, as used in OpenJDK and other products, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted image that triggers execution of incorrect ...

Exploit
  • EPSS 2.78%
  • Veröffentlicht 03.12.2008 17:30:00
  • Zuletzt bearbeitet 16.06.2026 22:59:42

Buffer overflow in the ReadEmbeddedTextTag function in src/cmsio1.c in Little cms color engine (aka lcms) before 1.16 allows attackers to have an unknown impact via vectors related to a length parameter inconsistency involving the contents of "the in...

  • EPSS 2.16%
  • Veröffentlicht 03.12.2008 17:30:00
  • Zuletzt bearbeitet 16.06.2026 22:59:42

Integer signedness error in the cmsAllocGamma function in src/cmsgamma.c in Little cms color engine (aka lcms) before 1.17 allows attackers to have an unknown impact via a file containing a certain "number of entries" value, which is interpreted impr...

Exploit
  • EPSS 7.93%
  • Veröffentlicht 17.05.2007 19:30:00
  • Zuletzt bearbeitet 16.06.2026 22:40:13

Stack-based buffer overflow in Little CMS (lcms) before 1.15 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted ICC profile in a JPG file.