CVE-2009-0581

Name of the Vulnerable Software and Affected Versions LittleCMS versions prior to 1.18beta2 lcms versions prior to 1.18 liblcms versions prior to 1.18 liblcms1 versions prior to 1.18 liblcms1-dev versions prior to 1.18 lcms-devel versions prior to 1.18 lcms-utils versions prior to 1.18

Description The issue is related to a memory leak in LittleCMS, which can be exploited by context-dependent attackers to cause a denial of service, resulting in memory consumption and application crash via a crafted image file. The vulnerability can be exploited remotely, potentially leading to a violation of confidentiality, integrity, and availability of protected information.

Recommendations For LittleCMS versions prior to 1.18beta2, update to version 1.18beta2 or later to resolve the issue. For lcms versions prior to 1.18, update to version 1.18 or later to resolve the issue. For liblcms versions prior to 1.18, update to version 1.18 or later to resolve the issue. For liblcms1 versions prior to 1.18, update to version 1.18 or later to resolve the issue. For liblcms1-dev versions prior to 1.18, update to version 1.18 or later to resolve the issue. For lcms-devel versions prior to 1.18, update to version 1.18 or later to resolve the issue. For lcms-utils versions prior to 1.18, update to version 1.18 or later to resolve the issue.