Your submission was sent successfully! Close

CVE-2008-5316

Published: 03 December 2008

Buffer overflow in the ReadEmbeddedTextTag function in src/cmsio1.c in Little cms color engine (aka lcms) before 1.16 allows attackers to have an unknown impact via vectors related to a length parameter inconsistency involving the contents of "the input file," a different vulnerability than CVE-2007-2741.

Priority

Low

Status

Package Release Status
lcms
Launchpad, Ubuntu, Debian
Upstream
Released (1.16)

Notes

AuthorNote
kees
this was included in the USN that addressed CVE-2007-2741.

References