Buffer Overflow Vulnerability in LittleCMS by Marti Maria
CVE-2013-4276

Currently unrated

Key Information:

Vendor: Littlecms
Status: Little Cms Color Engine
Vendor: CVE Published:; 28 September 2013

What is CVE-2013-4276?

Multiple stack-based buffer overflows exist in LittleCMS, specifically in versions 1.19 and earlier. Remote attackers can exploit this vulnerability to trigger a denial of service, causing the affected application to crash. This can occur when processing specially crafted ICC color profiles with the icctrans utility or specific TIFF images with the tiffdiff utility. To ensure system integrity and availability, it is essential to update to a secure version.

References

https://usn.ubuntu.com/3770-2/

vendor-advisoryx_refsource_UBUNTU

https://bugzilla.redhat.com/show_bug.cgi?id=992975

x_refsource_CONFIRM

http://www.securityfocus.com/bid/61607

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 28, 2013
Vulnerability Reserved
Jun 12, 2013

CVE-2013-4276 Data

JSON

Littlecms

What is CVE-2013-4276?

References

Timeline