NuytsTech Security

CVE-2016-10165

by ·

The Type_MLU_Read function in cmstypes.c in Little CMS (aka lcms2) allows remote attackers to obtain sensitive information or cause a denial of service via an image with a crafted ICC profile, which triggers an out-of-bounds heap read.

Date published : 2017-02-03

http://www.securityfocus.com/bid/95808

http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html

Tags: