Candidate: CVE-2009-0584
PublicDate: 2009-03-23 20:00:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0584
 https://ubuntu.com/security/notices/USN-743-1
Description:
 icc.c in the International Color Consortium (ICC) Format library (aka
 icclib), as used in Ghostscript 8.64 and earlier and Argyll Color
 Management System (CMS) 1.0.3 and earlier, allows context-dependent
 attackers to cause a denial of service (application crash) or possibly
 execute arbitrary code by using a device file for processing a crafted
 image file associated with large integer values for certain sizes, related
 to an ICC profile in a (1) PostScript or (2) PDF file with embedded images.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_ghostscript:
upstream_ghostscript: needs-triage
dapper_ghostscript: DNE
gutsy_ghostscript: released (8.61.dfsg.1~svn8187-0ubuntu3.5)
hardy_ghostscript: released (8.61.dfsg.1-1ubuntu3.1)
intrepid_ghostscript: released (8.63.dfsg.1-0ubuntu6.3)
devel_ghostscript: released (8.64.dfsg.1-0ubuntu6)

Patches_gs-gpl:
upstream_gs-gpl: needs-triage
dapper_gs-gpl: released (8.15-4ubuntu3.2)
gutsy_gs-gpl: DNE
hardy_gs-gpl: DNE
intrepid_gs-gpl: DNE
devel_gs-gpl: DNE