Advisories ยป MGASA-2013-0240

Updated lcms2 packages fixes security vulnerability

Publication date: 09 Aug 2013
Type: security
Affected Mageia releases : 2 , 3
CVE: CVE-2013-4160

Description

It was discovered that Little CMS did not properly verify certain memory
allocations. If a user or automated system using Little CMS were tricked
into opening a specially crafted file, an attacker could cause Little CMS
to crash (CVE-2013-4160).
                

References

SRPMS

3/core

2/core