CVE - CVE-2009-0793

CVE-ID
CVE-2009-0793	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
cmsxform.c in LittleCMS (aka lcms or liblcms) 1.18, as used in OpenJDK and other products, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted image that triggers execution of incorrect code for "transformations of monochrome profiles."
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:34411 URL:http://www.securityfocus.com/bid/34411 MISC:34420 URL:http://www.securityfocus.com/bid/34420 MISC:34623 URL:http://secunia.com/advisories/34623 MISC:34632 URL:http://secunia.com/advisories/34632 MISC:34634 URL:http://secunia.com/advisories/34634 MISC:34635 URL:http://secunia.com/advisories/34635 MISC:34675 URL:http://secunia.com/advisories/34675 MISC:34782 URL:http://secunia.com/advisories/34782 MISC:35048 URL:http://secunia.com/advisories/35048 MISC:42870 URL:http://secunia.com/advisories/42870 MISC:ADV-2009-0963 URL:http://www.vupen.com/english/advisories/2009/0963 MISC:ADV-2009-0964 URL:http://www.vupen.com/english/advisories/2009/0964 MISC:ADV-2011-0087 URL:http://www.vupen.com/english/advisories/2011/0087 MISC:DSA-1769 URL:http://www.debian.org/security/2009/dsa-1769 MISC:FEDORA-2009-3425 URL:https://www.redhat.com/archives/fedora-package-announce/2009-April/msg00203.html MISC:FEDORA-2009-3426 URL:https://www.redhat.com/archives/fedora-package-announce/2009-April/msg00204.html MISC:FEDORA-2009-3914 URL:https://www.redhat.com/archives/fedora-package-announce/2009-May/msg00233.html MISC:FEDORA-2009-3967 URL:https://www.redhat.com/archives/fedora-package-announce/2009-May/msg00285.html MISC:GLSA-200904-19 URL:http://security.gentoo.org/glsa/glsa-200904-19.xml MISC:MDVSA-2009:121 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2009:121 MISC:MDVSA-2009:137 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2009:137 MISC:MDVSA-2009:162 URL:http://www.mandriva.com/security/advisories?name=MDVSA-2009:162 MISC:RHSA-2009:0377 URL:https://rhn.redhat.com/errata/RHSA-2009-0377.html MISC:USN-1043-1 URL:http://www.ubuntu.com/usn/USN-1043-1 MISC:https://bugzilla.redhat.com/show_bug.cgi?id=492353 URL:https://bugzilla.redhat.com/show_bug.cgi?id=492353 MISC:oval:org.mitre.oval:def:11340 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11340
Assigning CNA
Red Hat, Inc.
Date Record Created
20090304	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20090304)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is a record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)

Site Map | Terms of Use | Privacy Policy | Contact Us | Follow CVE

Use of the CVE® List and the associated references from this website are subject to the terms of use. CVE is sponsored by the U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA). Copyright © 1999–2023, The MITRE Corporation. CVE and the CVE logo are registered trademarks of The MITRE Corporation.