MGASA-2016-0303

Source
https://advisories.mageia.org/MGASA-2016-0303.html
Import Source
https://advisories.mageia.org/MGASA-2016-0303.json
JSON Data
https://api.osv.dev/v1/vulns/MGASA-2016-0303
Published
2016-09-16T09:27:13Z
Modified
2026-04-16T04:27:40.223027Z
Summary
Updated lcms2 packages fix security vulnerability
Details

An out-of-bounds read in cmstypes.c in TypeMLURead function was found, leading to heap memory leak triggered by crafted ICC profile (rhbz#1367357).

References
Credits

Affected packages

Mageia:5 / lcms2

Package

Name
lcms2
Purl
pkg:rpm/mageia/lcms2?arch=source&distro=mageia-5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.6-3.1.mga5

Ecosystem specific

{
    "section": "core"
}

Database specific

source
"https://advisories.mageia.org/MGASA-2016-0303.json"