Lucene search
F5F5:K13500115HistorySep 13, 2017 - 12:00 a.m.
K13500115 : Little CMS (aka lcms2) vulnerability CVE-2016-10165
2017-09-1300:00:00
my.f5.com
64
Security Advisory Description
The Type_MLU_Read function in cmstypes.c in Little CMS (aka lcms2) allows remote attackers to obtain sensitive information or cause a denial of service via an image with a crafted ICC profile, which triggers an out-of-bounds heap read. (CVE-2016-10165)
Impact
There is no impact; F5 products are not affected by this vulnerability.
| CPE | Name | Operator | Version |
|---|---|---|---|
| big-ip afm | eq | 11.4.1 | |
| big-ip afm | eq | 11.5.0 | |
| big-ip afm | eq | 11.5.1 | |
| big-ip afm | eq | 11.5.2 | |
| big-ip afm | eq | 11.5.3 | |
| big-ip afm | eq | 11.5.4 | |
| big-ip afm | eq | 11.6.0 | |
| big-ip afm | eq | 11.6.1 | |
| big-ip afm | eq | 12.0.0 | |
| big-ip afm | eq | 12.1.0 |
Related
cve
cve
CVE-2016-10165
2017-02-03 19:59:00
openvas
openvas
Debian: Security Advisory (DLA-803-1)
2023-03-08 00:00:00
Debian Security Advisory DSA 3774-1 (lcms2 - security update)
2017-01-29 00:00:00
Huawei EulerOS: Security Advisory for lcms2 (EulerOS-SA-2019-2163)
2020-01-23 00:00:00
osv
osv
lcms2 - security update
2017-01-29 00:00:00
lcms2 - security update
2017-01-26 00:00:00
CVE-2016-10165
2017-02-03 19:59:00
debiancve
debiancve
CVE-2016-10165
2017-02-03 19:59:00
alpinelinux
alpinelinux
CVE-2016-10165
2017-02-03 19:59:00
debian
debian
[SECURITY] [DSA 3774-1] lcms2 security update
2017-01-29 10:47:16
[SECURITY] [DSA 3774-1] lcms2 security update
2017-01-29 10:47:16
[SECURITY] [DLA 803-1] lcms2 security update
2017-01-26 18:43:39
cvelist
cvelist
CVE-2016-10165
2017-02-03 19:00:00
nessus
nessus
EulerOS 2.0 SP3 : lcms2 (EulerOS-SA-2019-2601)
2019-12-18 00:00:00
EulerOS 2.0 SP5 : lcms2 (EulerOS-SA-2019-2163)
2019-11-12 00:00:00
Debian DLA-803-1 : lcms2 security update
2017-01-27 00:00:00
nvd
nvd
CVE-2016-10165
2017-02-03 19:59:00
veracode
veracode
Denial Of Service (DoS)
2018-06-04 06:24:30
Denial Of Service (DoS) Through Heap Out-of-Bounds (OOB) Read
2019-01-15 09:13:53
prion
prion
Heap overflow
2017-02-03 19:59:00
redhatcve
redhatcve
CVE-2016-10165
2020-10-05 05:24:57
ubuntucve
ubuntucve
CVE-2016-10165
2017-02-03 00:00:00
cloudfoundry
cloudfoundry
USN-3770-1: Little CMS vulnerabilities | Cloud Foundry
2018-09-25 00:00:00
ubuntu
ubuntu
Little CMS vulnerabilities
2018-09-20 00:00:00
Little CMS vulnerabilities
2018-09-20 00:00:00
centos
centos
java security update
2016-10-19 14:40:38
java security update
2016-11-12 06:29:49
redhat
redhat
(RHSA-2016:2658) Important: java-1.7.0-openjdk security update
2016-11-07 00:00:00
(RHSA-2016:2079) Critical: java-1.8.0-openjdk security update
2016-10-19 07:58:43
(RHSA-2017:3268) Critical: java-1.7.1-ibm security update
2017-11-28 20:28:12
ibm
ibm
suse
suse
Security update for java-1_7_1-ibm (important)
2017-12-30 03:09:07
Security update for java-1_7_0-ibm (important)
2018-01-10 12:10:02
Security update for java-1_7_1-ibm (important)
2017-12-27 15:12:43
aix
aix
There are multiple vulnerabilities in IBM SDK Java Technology Edition
2017-12-07 12:20:05
oracle
oracle
Oracle Critical Patch Update - October 2017
2017-10-17 00:00:00