Candidate: CVE-2009-0793 PublicDate: 2009-04-09 15:08:00 UTC References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0793 https://rhn.redhat.com/errata/RHSA-2009-0377.html Description: cmsxform.c in LittleCMS (aka lcms or liblcms) 1.18, as used in OpenJDK and other products, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted image that triggers execution of incorrect code for "transformations of monochrome profiles." Ubuntu-Description: Notes: mdeslaur> as per upstream post to lcms-user: mdeslaur> No code injection can be done using this bug. Using monochrome mdeslaur> profiles is rare, and using them in the output direction is a mdeslaur> corner case. This bug is only exploitable if the application mdeslaur> uses monochrome output, and then the crafted profile should be mdeslaur> in the output direction. Does not affect input profiles, so an mdeslaur> attacker could NOT use this flaw by creating a specially-crafted mdeslaur> image. Bugs: http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=492353 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=530785 Priority: low Discovered-by: Assigned-to: CVSS: Patches_lcms: vendor: https://bugzilla.redhat.com/attachment.cgi?id=337279 upstream_lcms: needs-triage dapper_lcms: ignored (reached end-of-life) gutsy_lcms: needs-triage (reached end-of-life) hardy_lcms: released (1.16-7ubuntu1.3) intrepid_lcms: ignored (reached end-of-life) jaunty_lcms: ignored (reached end-of-life) karmic_lcms: released (1.18.dfsg-1ubuntu1.1) lucid_lcms: released (1.18.dfsg-1ubuntu2.10.04.1) maverick_lcms: released (1.18.dfsg-1ubuntu2.10.10.1) devel_lcms: released (1.18.dfsg-1.2ubuntu1) Patches_openjdk-6: upstream_openjdk-6: released (6b16-1) dapper_openjdk-6: DNE gutsy_openjdk-6: DNE hardy_openjdk-6: released (6b18-1.8.2-4ubuntu1~8.04.1) intrepid_openjdk-6: ignored (reached end-of-life) jaunty_openjdk-6: ignored (reached end-of-life) karmic_openjdk-6: not-affected (6b16-1.6.1-0ubuntu1) lucid_openjdk-6: not-affected (6b16-1.6.1-0ubuntu1) maverick_openjdk-6: not-affected (6b16-1.6.1-0ubuntu1) devel_openjdk-6: not-affected (6b16-1.6.1-0ubuntu1)