Описание
Multiple integer overflows in LittleCMS (aka lcms or liblcms) before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent attackers to execute arbitrary code via a crafted image file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.
Multiple integer overflows in LittleCMS (aka lcms or liblcms) before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent attackers to execute arbitrary code via a crafted image file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2009-0723
- https://bugzilla.redhat.com/show_bug.cgi?id=487508
- https://exchange.xforce.ibmcloud.com/vulnerabilities/49326
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11780
- https://rhn.redhat.com/errata/RHSA-2009-0377.html
- https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00794.html
- https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00799.html
- https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00811.html
- https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00851.html
- https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00856.html
- https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00857.html
- https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00921.html
- http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00004.html
- http://scary.beasts.org/security/CESA-2009-003.html
- http://scarybeastsecurity.blogspot.com/2009/03/littlecms-vulnerabilities.html
- http://secunia.com/advisories/34367
- http://secunia.com/advisories/34382
- http://secunia.com/advisories/34400
- http://secunia.com/advisories/34408
- http://secunia.com/advisories/34418
- http://secunia.com/advisories/34442
- http://secunia.com/advisories/34450
- http://secunia.com/advisories/34454
- http://secunia.com/advisories/34463
- http://secunia.com/advisories/34632
- http://secunia.com/advisories/34675
- http://secunia.com/advisories/34782
- http://security.gentoo.org/glsa/glsa-200904-19.xml
- http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.487438
- http://www.debian.org/security/2009/dsa-1745
- http://www.debian.org/security/2009/dsa-1769
- http://www.mandriva.com/security/advisories?name=MDVSA-2009:121
- http://www.mandriva.com/security/advisories?name=MDVSA-2009:137
- http://www.mandriva.com/security/advisories?name=MDVSA-2009:162
- http://www.ocert.org/advisories/ocert-2009-003.html
- http://www.redhat.com/support/errata/RHSA-2009-0339.html
- http://www.securityfocus.com/archive/1/502018/100/0/threaded
- http://www.securityfocus.com/archive/1/502031/100/0/threaded
- http://www.securityfocus.com/bid/34185
- http://www.securitytracker.com/id?1021869
- http://www.ubuntu.com/usn/USN-744-1
- http://www.vupen.com/english/advisories/2009/0775
Связанные уязвимости
Multiple integer overflows in LittleCMS (aka lcms or liblcms) before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent attackers to execute arbitrary code via a crafted image file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.
Multiple integer overflows in LittleCMS (aka lcms or liblcms) before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent attackers to execute arbitrary code via a crafted image file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.
Multiple integer overflows in LittleCMS (aka lcms or liblcms) before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent attackers to execute arbitrary code via a crafted image file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.
Multiple integer overflows in LittleCMS (aka lcms or liblcms) before 1 ...
