LittleCMS Little CMS color engine 2.9

CPE Details

LittleCMS Little CMS color engine 2.9
littlecms
little_cms_color_engine
2.9
2019-12-16
11h48 +00:00
2019-12-16
11h48 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:littlecms:little_cms_color_engine:2.9:*:*:*:*:*:*:*

Informations

Vendor

littlecms

Product

little_cms_color_engine

Version

2.9

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2018-16435 2018-09-03 22h00 +00:00 Little CMS (aka Little Color Management System) 2.9 has an integer overflow in the AllocateDataSet function in cmscgats.c, leading to a heap-based buffer overflow in the SetData function via a crafted file in the second argument to cmsIT8LoadFromFile.
5.5
Moyen
CVE-2016-10165 2017-02-03 18h00 +00:00 The Type_MLU_Read function in cmstypes.c in Little CMS (aka lcms2) allows remote attackers to obtain sensitive information or cause a denial of service via an image with a crafted ICC profile, which triggers an out-of-bounds heap read.
7.1
Haute