Quang Nguyen discovered an integer overflow in the Little CMS 2 colour
management library, which could in denial of service and potentially the
execution of arbitrary code if a malformed IT8 calibration file is
processed.
Architectural progress
Please remove any architecture to which the security vulnerabilities do not apply.
CVE IDs (if any)
CVE-2018-16435
Other security advisory IDs (if any)
DSA-4284-1
Patches (if any)
https://github.com/mm2/Little-CMS/commit/768f70ca405cd3159d990e962d54456773bb8cf8
PoC(s) (if any)
Additional descriptions (if applicable)
Quang Nguyen discovered an integer overflow in the Little CMS 2 colour management library, which could in denial of service and potentially the execution of arbitrary code if a malformed IT8 calibration file is processed.
Architectural progress
Please remove any architecture to which the security vulnerabilities do not apply.
amd64
)optenv32
)arm64
)armel
)ppc64
)powerpc
)riscv64
)