liblcms2.so is vulnerable to denial of service. The vulnerability exists through a heap out-of-bound read in Type_MLU_Read function of cmstypes.c where the MLU bounds were not properly checked, causing the application crash.

CPENameOperatorVersion
liblcms2.soeq2.0.6
liblcms2.soeq2.0.6

CPE	Name	Operator	Version
	liblcms2.so	eq	2.0.6
	liblcms2.so	eq	2.0.6

References

bugzilla.suse.com/show_bug.cgi?id=1021364

github.com/mm2/Little-CMS/commit/5ca71a7b

openvas 21

debian 3

f5 1

prion 1

cve 1

osv 3

debiancve 1

alpinelinux 1

cvelist 1

nessus 36

nvd 1

redhatcve 1

veracode 1

ubuntucve 1

cloudfoundry 1

ubuntu 2

redhat 8

centos 2

ibm 30

suse 8

aix 1

oracle 1

openvas

Debian: Security Advisory (DSA-3774-1)

2017-01-28 00:00:00

Huawei EulerOS: Security Advisory for lcms2 (EulerOS-SA-2019-2601)

2020-01-23 00:00:00

Debian: Security Advisory (DLA-803-1)

2023-03-08 00:00:00

debian

[SECURITY] [DSA 3774-1] lcms2 security update

2017-01-29 10:47:16

[SECURITY] [DSA 3774-1] lcms2 security update

2017-01-29 10:47:16

[SECURITY] [DLA 803-1] lcms2 security update

2017-01-26 18:43:39

K13500115 : Little CMS (aka lcms2) vulnerability CVE-2016-10165

2017-09-13 00:00:00

prion

Heap overflow

2017-02-03 19:59:00

cve

CVE-2016-10165

2017-02-03 19:59:00

osv

lcms2 - security update

2017-01-29 00:00:00

lcms2 - security update

2017-01-26 00:00:00

CVE-2016-10165

2017-02-03 19:59:00

debiancve

CVE-2016-10165

2017-02-03 19:59:00

alpinelinux

CVE-2016-10165

2017-02-03 19:59:00

cvelist

CVE-2016-10165

2017-02-03 19:00:00

nessus

EulerOS 2.0 SP3 : lcms2 (EulerOS-SA-2019-2601)

2019-12-18 00:00:00

EulerOS 2.0 SP5 : lcms2 (EulerOS-SA-2019-2163)

2019-11-12 00:00:00

Debian DLA-803-1 : lcms2 security update

2017-01-27 00:00:00

nvd

CVE-2016-10165

2017-02-03 19:59:00

redhatcve

CVE-2016-10165

2020-10-05 05:24:57

veracode

Denial Of Service (DoS) Through Heap Out-of-Bounds (OOB) Read

2019-01-15 09:13:53

ubuntucve

CVE-2016-10165

2017-02-03 00:00:00

cloudfoundry

USN-3770-1: Little CMS vulnerabilities | Cloud Foundry

2018-09-25 00:00:00

ubuntu

Little CMS vulnerabilities

2018-09-20 00:00:00

Little CMS vulnerabilities

2018-09-20 00:00:00

redhat

(RHSA-2016:2079) Critical: java-1.8.0-openjdk security update

2016-10-19 07:58:43

(RHSA-2016:2658) Important: java-1.7.0-openjdk security update

2016-11-07 00:00:00

(RHSA-2017:3268) Critical: java-1.7.1-ibm security update

2017-11-28 20:28:12

centos

java security update

2016-10-19 14:40:38

java security update

2016-11-12 06:29:49

ibm

Security Bulletin: Multiple vulnerabilities in IBM Java SDK that affect IBM PureApplication System

2018-06-15 07:09:11

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM OS Images for Red Hat Linux Systems, AIX-based, and Windows-based deployments.

2018-06-15 07:08:55

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Platform Cluster Manager Standard Edition, IBM Platform Cluster Manager Advanced Edition, Platform HPC, and Spectrum Cluster Foundation

2019-05-23 05:10:01

suse

Security update for java-1_7_0-ibm (important)

2018-01-10 12:10:02

Security update for java-1_7_1-ibm (important)

2017-12-27 15:12:43

Security update for java-1_7_1-ibm (important)

2017-12-30 03:09:07

aix

There are multiple vulnerabilities in IBM SDK Java Technology Edition

2017-12-07 12:20:05

oracle

Oracle Critical Patch Update - October 2017

2017-10-17 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.011 Low

EPSS

Percentile

84.3%

JSON

Related for VERACODE:6488