Univention Bugzilla – Bug 47760
lcms2: Multiple issues (4.3)
Last modified: 2018-09-12 14:04:10 CEST
New Debian lcms2 2.8-4+deb9u1 fixes: This update addresses the following issue: * Little CMS (aka Little Color Management System) 2.9 has an integer overflow in the AllocateDataSet function in cmscgats.c, leading to a heap-based buffer overflow in the SetData function via a crafted file in the second argument to cmsIT8LoadFromFile. (CVE-2018-16435) * Little CMS (aka Little Color Management System) 2.9 has an integer overflow in the AllocateDataSet function in cmscgats.c, leading to a heap-based buffer overflow in the SetData function via a crafted file in the second argument to cmsIT8LoadFromFile. (CVE-2018-16435) * Little CMS (aka Little Color Management System) 2.9 has an integer overflow in the AllocateDataSet function in cmscgats.c, leading to a heap-based buffer overflow in the SetData function via a crafted file in the second argument to cmsIT8LoadFromFile. (CVE-2018-16435)
--- mirror/ftp/4.3/unmaintained/4.3-0/source/lcms2_2.8-4.dsc +++ apt/ucs_4.3-0-errata4.3-2/source/lcms2_2.8-4+deb9u1.dsc @@ -1,3 +1,7 @@ +2.8-4+deb9u1 [Tue, 04 Sep 2018 17:59:35 +0200] Moritz Mühlenhoff <jmm@debian.org>: + + * CVE-2018-16435 + 2.8-4 [Thu, 26 Jan 2017 11:04:13 +0100] Thomas Weber <tweber@debian.org>: * New patch: debian/patches/fix-CVE-2016-10165.patch. <http://10.200.17.11/4.3-2/#273781197778180171>
3bb589b65f | Advisory adjusted.
<http://errata.software-univention.de/ucs/4.3/233.html>