Launchpad CVE tracker

CVE 2007-2741

Stack-based buffer overflow in Little CMS (lcms) before 1.15 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted ICC profile in a JPG file.

Related bugs and status

CVE-2007-2741 (Candidate) is related to these bugs:

Bug #174613: [liblcms1] [CVE-2007-2741] DoS vulnerability and possible execution of arbitrary code

Summary				In	Importance	Status
	174613	[liblcms1] [CVE-2007-2741] DoS vulnerability and possible execution of arbitrary code		lcms (Ubuntu)	Undecided	Fix Released
	174613	[liblcms1] [CVE-2007-2741] DoS vulnerability and possible execution of arbitrary code		lcms (Ubuntu Dapper)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://scary.beasts.or...
BID: 24001
SECUNIA: 25294
SUSE: SUSE-SR:2007:024
MANDRIVA: MDKSA-2007:238
SECUNIA: 27756
UBUNTU: USN-652-1
SECUNIA: 32282
VUPEN: ADV-2007-1837
OSVDB: 36179
XF: littlecms-iccprofile-b...

Launchpad.net

CVE 2007-2741

Related bugs and status

Related bugs

References