CVE-2008-5316
03.12.2008, 17:30
Buffer overflow in the ReadEmbeddedTextTag function in src/cmsio1.c in Little cms color engine (aka lcms) before 1.16 allows attackers to have an unknown impact via vectors related to a length parameter inconsistency involving the contents of "the input file," a different vulnerability than CVE-2007-2741.Enginsight
| Vendor | Product | Version |
|---|---|---|
| littlecms | lcms | 𝑥 ≤ 1.15 |
| littlecms | lcms | 1.07 |
| littlecms | lcms | 1.08 |
| littlecms | lcms | 1.09 |
| littlecms | lcms | 1.10 |
| littlecms | lcms | 1.11 |
| littlecms | lcms | 1.12 |
| littlecms | lcms | 1.13 |
| littlecms | lcms | 1.14 |
| littlecms | little_cms_color_engine | 𝑥 ≤ 1.15 |
| littlecms | little_cms_color_engine | 1.07 |
| littlecms | little_cms_color_engine | 1.08 |
| littlecms | little_cms_color_engine | 1.09 |
| littlecms | little_cms_color_engine | 1.10 |
| littlecms | little_cms_color_engine | 1.11 |
| littlecms | little_cms_color_engine | 1.12 |
| littlecms | little_cms_color_engine | 1.13 |
| littlecms | little_cms_color_engine | 1.14 |
𝑥
= Vulnerable software versions
Ubuntu Releases
Common Weakness Enumeration
References