CVE-2013-4276

Name of the Vulnerable Software and Affected Versions LittleCMS versions 1.19 and earlier lcms versions prior to 2.6-r1

Description The issue concerns multiple stack-based buffer overflows in LittleCMS, allowing remote attackers to cause a denial of service via crafted files, such as ICC color profiles or TIFF images. This can lead to a crash of the system, disrupting the availability of protected information. The exploitation of these issues can be done remotely.

Recommendations For LittleCMS versions 1.19 and earlier: At the moment, there is no information about a newer version that contains a fix for this vulnerability. For lcms versions prior to 2.6-r1: At the moment, there is no information about a newer version that contains a fix for this vulnerability.