Headline
CVE-2009-0733: 487512 – (CVE-2009-0733) CVE-2009-0733 LittleCms lack of upper-bounds check on sizes
Multiple stack-based buffer overflows in the ReadSetOfCurves function in LittleCMS (aka lcms or liblcms) before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent attackers to execute arbitrary code via a crafted image file associated with a large integer value for the (1) input or (2) output channel, related to the ReadLUT_A2B and ReadLUT_B2A functions.
Description Josh Bressers 2009-02-26 14:00:08 UTC
Chris Evans discovered a flaw in how LittleCms checks certain upper-bounds sizes. This flaw could potentially lead to arbitrary code execution in applications that use the system LittleCms library, or embed the source into their application.
Acknowledgements:
Red Hat would like to thank Chris Evans from the Google Security Team for reporting these issues.
Comment 7 Josh Bressers 2009-03-19 14:54:35 UTC
Lifting embargo
Comment 15 Fedora Update System 2009-03-23 15:50:52 UTC
lcms-1.18-1.fc10 has been pushed to the Fedora 10 stable repository. If problems still persist, please make note of it in this bug report.
Comment 16 Fedora Update System 2009-03-23 15:51:59 UTC
lcms-1.18-0.1.beta2.fc9 has been pushed to the Fedora 9 stable repository. If problems still persist, please make note of it in this bug report.
Comment 17 Fedora Update System 2009-03-23 15:54:03 UTC
lcms-1.18-1.fc9 has been pushed to the Fedora 9 stable repository. If problems still persist, please make note of it in this bug report.
Comment 18 Fedora Update System 2009-03-23 15:59:21 UTC
lcms-1.18-0.1.beta2.fc10 has been pushed to the Fedora 10 stable repository. If problems still persist, please make note of it in this bug report.
Comment 20 Fedora Update System 2009-03-24 05:29:29 UTC
java-1.6.0-openjdk-1.6.0.0-11.b14.fc10 has been pushed to the Fedora 10 stable repository. If problems still persist, please make note of it in this bug report.
Comment 21 Fedora Update System 2009-03-24 05:29:50 UTC
java-1.6.0-openjdk-1.6.0.0-0.21.b09.fc9 has been pushed to the Fedora 9 stable repository. If problems still persist, please make note of it in this bug report.
Comment 23 Fedora Update System 2009-03-25 16:11:25 UTC
java-1.6.0-openjdk-1.6.0.0-0.23.b09.fc9 has been pushed to the Fedora 9 stable repository. If problems still persist, please make note of it in this bug report.