Littlecms : Security Vulnerabilities, CVEs, Published In 2017
The Type_MLU_Read function in cmstypes.c in Little CMS (aka lcms2) allows remote attackers to obtain sensitive information or cause a denial of service via an image with a crafted ICC profile, which triggers an out-of-bounds heap read.
Max CVSS
7.1
EPSS Score
0.95%
Published
2017-02-03
Updated
2024-01-10
1 vulnerabilities found