Vulnerability in Argyllcms
CVE-2009-0792
Multiple integer overflows in icc.c in the International Color Consortium (ICC) Format library (aka icclib), as used in Ghostscript 8.64 and earlier and Argyll Color Management System (CMS) 1.0.3 and earlier, allow context-dependent attack…
EPSS: 0.040 (89.2th percentile) — read the EPSS interpretation.
Affected products
- Argyllcms — versions 0.1.0, 0.2.0, 0.2.1
- Ghostscript — versions 5.50, 7.05, 7.07
- N/a — versions n/a
Weakness classification (CWE)
References
- secalert@redhat.com (signature, x_refsource_OVAL, vdb-entry)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
- secalert@redhat.com (vendor-advisory, x_refsource_FEDORA)
- secalert@redhat.com (vendor-advisory, x_refsource_GENTOO)
- secalert@redhat.com (x_refsource_REDHAT, vendor-advisory)
- secalert@redhat.com (vendor-advisory, x_refsource_FEDORA)
- secalert@redhat.com (x_refsource_CONFIRM)
- secalert@redhat.com (vendor-advisory, x_refsource_SUNALERT)
- secalert@redhat.com (vdb-entry, x_refsource_XF)
- secalert@redhat.com (mailing-list, x_refsource_BUGTRAQ)