Lucene search
RedHatRHSA-2009:0011HistoryJan 07, 2009 - 12:00 a.m.
(RHSA-2009:0011) Moderate: lcms security update
2009-01-0700:00:00
access.redhat.com
17
EPSS
0.012
Percentile
85.1%
Little Color Management System (LittleCMS, or simply “lcms”) is a
small-footprint, speed-optimized open source color management engine.
Multiple insufficient input validation flaws were discovered in LittleCMS.
An attacker could use these flaws to create a specially-crafted image file
which could cause an application using LittleCMS to crash, or, possibly,
execute arbitrary code when opened. (CVE-2008-5316, CVE-2008-5317)
Users of lcms should upgrade to these updated packages, which contain
backported patches to correct these issues. All running applications using
lcms library must be restarted for the update to take effect.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 5 | i386 | lcms-devel | < 1.15-1.2.2.el5_2.2 | lcms-devel-1.15-1.2.2.el5_2.2.i386.rpm |
| RedHat | 5 | s390 | lcms | < 1.15-1.2.2.el5_2.2 | lcms-1.15-1.2.2.el5_2.2.s390.rpm |
| RedHat | 5 | x86_64 | lcms | < 1.15-1.2.2.el5_2.2 | lcms-1.15-1.2.2.el5_2.2.x86_64.rpm |
| RedHat | 5 | ia64 | lcms-devel | < 1.15-1.2.2.el5_2.2 | lcms-devel-1.15-1.2.2.el5_2.2.ia64.rpm |
| RedHat | 5 | ppc | lcms | < 1.15-1.2.2.el5_2.2 | lcms-1.15-1.2.2.el5_2.2.ppc.rpm |
| RedHat | 5 | src | lcms | < 1.15-1.2.2.el5_2.2 | lcms-1.15-1.2.2.el5_2.2.src.rpm |
| RedHat | 5 | i386 | lcms | < 1.15-1.2.2.el5_2.2 | lcms-1.15-1.2.2.el5_2.2.i386.rpm |
| RedHat | 5 | x86_64 | lcms-devel | < 1.15-1.2.2.el5_2.2 | lcms-devel-1.15-1.2.2.el5_2.2.x86_64.rpm |
| RedHat | 5 | s390x | lcms | < 1.15-1.2.2.el5_2.2 | lcms-1.15-1.2.2.el5_2.2.s390x.rpm |
| RedHat | 5 | ppc | lcms-devel | < 1.15-1.2.2.el5_2.2 | lcms-devel-1.15-1.2.2.el5_2.2.ppc.rpm |
Related
openvas
openvas
Oracle: Security Advisory (ELSA-2009-0011)
2015-10-08 00:00:00
CentOS Security Advisory CESA-2009:0011 (lcms)
2009-01-13 00:00:00
CentOS Update for lcms CESA-2009:0011 centos5 i386
2011-08-09 00:00:00
debian
debian
[SECURITY] [DSA 1684-1] New lcms packages fix multiple vulnerabilities
2008-12-10 07:51:43
[SECURITY] [DSA 1684-1] New lcms packages fix multiple vulnerabilities
2008-12-10 07:51:43
oraclelinux
oraclelinux
lcms security update
2009-01-07 00:00:00
nessus
nessus
Scientific Linux Security Update : lcms on SL5.x i386/x86_64
2012-08-01 00:00:00
CentOS 5 : lcms (CESA-2009:0011)
2010-01-06 00:00:00
RHEL 5 : lcms (RHSA-2009:0011)
2009-01-08 00:00:00
centos
centos
lcms, python security update
2009-01-08 16:02:58
ubuntu
ubuntu
LittleCMS vulnerability
2008-10-14 00:00:00
LittleCMS vulnerability
2008-12-17 00:00:00
cvelist
cvelist
CVE-2008-5317
2008-12-03 17:00:00
CVE-2008-5316
2008-12-03 17:00:00
osv
osv
lcms - multiple vulnerabilities
2008-12-10 00:00:00
securityvulns
securityvulns
[USN-693-1] LittleCMS vulnerability
2008-12-18 00:00:00
lcms multiple security vulnerabilities
2008-12-12 00:00:00
prion
prion
Integer overflow
2008-12-03 17:30:00
Buffer overflow
2008-12-03 17:30:00
nvd
nvd
CVE-2008-5317
2008-12-03 17:30:00
CVE-2008-5316
2008-12-03 17:30:00
ubuntucve
ubuntucve
CVE-2008-5317
2008-12-03 00:00:00
CVE-2008-5316
2008-12-03 00:00:00
cve
cve
CVE-2008-5317
2008-12-03 17:30:00
CVE-2008-5316
2008-12-03 17:30:00