Integer signedness error in the cmsAllocGamma function in src/cmsgamma.c in Little cms color engine (aka lcms) prior to 1.17 allows malicious users to have an unknown impact via a file containing a certain "number of entries" value, which is interpreted improperly, leading to an allocation of insufficient memory.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
littlecms lcms 1.08 |
||
littlecms lcms 1.07 |
||
littlecms little cms color engine 1.14 |
||
littlecms little cms color engine 1.07 |
||
littlecms little cms color engine 1.15 |
||
littlecms lcms 1.12 |
||
littlecms lcms 1.11 |
||
littlecms little cms color engine 1.11 |
||
littlecms little cms color engine 1.10 |
||
littlecms lcms |
||
littlecms lcms 1.14 |
||
littlecms lcms 1.13 |
||
littlecms little cms color engine 1.13 |
||
littlecms little cms color engine 1.12 |
||
littlecms lcms 1.15 |
||
littlecms little cms color engine |
||
littlecms lcms 1.10 |
||
littlecms lcms 1.09 |
||
littlecms little cms color engine 1.09 |
||
littlecms little cms color engine 1.08 |
Vulmon