Alerts This Week
Warning Icon 1 485
Alerts This Week
Warning Icon 1 485

Debian 8 DLA-1496-1 Moderate: lcms2 Heap-Based Burst Risk

debian lts
Calendar Grey September 6, 2018
Dist Debian Esm H88
An integer overflow vulnerability present in lcms2 may lead to a potential heap buffer overflow exploit. Users of Debian are advised to update their systems.
It was discovered that there was an integer overflow vulnerability in the "Little CMS 2" colour management library

Summary

We recommend that you upgrade your lcms2 packages.


Regards,

- --
,'`.
: :' : Chris Lamb
`. `'` lamby@debian.org / chris-lamb.co.uk
`-



Package: lcms2
Version: 2.6-3+deb8u2
CVE ID: CVE-2018-16435
Debian Bug: #907983

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here