lcms-1.18-0.1.beta1AXS3.2
エラータID: AXSA:2009-30:02
リリース日:
2009/04/07 Tuesday - 21:39
題名:
lcms-1.18-0.1.beta1AXS3.2
影響のあるチャネル:
Asianux Server 3 for x86
Asianux Server 3 for x86_64
Severity:
High
Description:
以下項目について対処しました。
[Security Fix]
- lcmsにはメモリリークの問題があり、巧妙に作られたイメージファイルによってサービス拒否 (メモリ消費やアプリケーションのクラッシュ) を引き起こす脆弱性があります。(CVE-2009-0581)
- lcmsには複数のオーバーフローの問題があり、巧妙に作られたイメージファイルによって任意のコードが実行される脆弱性があります。(CVE-2009-0723)
- lcmsの ReadSetOfCurves 関数にはスタックベースのバッファオーバーフローの問題があり、巧妙に作られたイメージファイルによって任意のコードが実行される脆弱性があります。(CVE-2009-0733)
一部CVEの翻訳文は、JVNからの引用になります。
http://jvndb.jvn.jp/
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2009-0581
Memory leak in LittleCMS (aka lcms or liblcms) before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allows context-dependent attackers to cause a denial of service (memory consumption and application crash) via a crafted image file.
Memory leak in LittleCMS (aka lcms or liblcms) before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allows context-dependent attackers to cause a denial of service (memory consumption and application crash) via a crafted image file.
CVE-2009-0723
Multiple integer overflows in LittleCMS (aka lcms or liblcms) before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent attackers to execute arbitrary code via a crafted image file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.
Multiple integer overflows in LittleCMS (aka lcms or liblcms) before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent attackers to execute arbitrary code via a crafted image file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.
CVE-2009-0733
Multiple stack-based buffer overflows in the ReadSetOfCurves function in LittleCMS (aka lcms or liblcms) before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent attackers to execute arbitrary code via a crafted image file associated with a large integer value for the (1) input or (2) output channel, related to the ReadLUT_A2B and ReadLUT_B2A functions.
Multiple stack-based buffer overflows in the ReadSetOfCurves function in LittleCMS (aka lcms or liblcms) before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent attackers to execute arbitrary code via a crafted image file associated with a large integer value for the (1) input or (2) output channel, related to the ReadLUT_A2B and ReadLUT_B2A functions.
追加情報:
N/A
ダウンロード:
SRPMS
- lcms-1.18-0.1.beta1AXS3.2.src.rpm
MD5: 23997b405e8f405fb9fba98454a40f71
SHA-256: 556ff627dc8c9d5468ded265f71a34005ab71f3bdc78b588bf3c0aef82fe5994
Size: 901.79 kB
Asianux Server 3 for x86
- lcms-1.18-0.1.beta1AXS3.2.i386.rpm
MD5: 3a781ee410e83405fe52786cfb2d870e
SHA-256: 6e3893ae6b0fbbf883c6d6bb69825ca5466ff8905c23442cb411203139cb0dff
Size: 178.29 kB - lcms-devel-1.18-0.1.beta1AXS3.2.i386.rpm
MD5: 3f9e405dac00a4cc9551e3c75e914568
SHA-256: 718502909e4076fbdc54a01a6342ddac99b46a95dc9343fbbfeddf63327f6603
Size: 157.61 kB
Asianux Server 3 for x86_64
- lcms-1.18-0.1.beta1AXS3.2.x86_64.rpm
MD5: 5fabcc3e6718419f08051b73c6aefe01
SHA-256: ea47abfe31f0362be6325f1f19ae4ad826131ae0c96d500a7e61b0490858e6b1
Size: 178.22 kB - lcms-devel-1.18-0.1.beta1AXS3.2.x86_64.rpm
MD5: 3acf6ff0f2de0bb18ed8c0013d0a1a94
SHA-256: 68eadcf8a6fd3a379603f8c4a71105c0b4d47fd80030450ef206afa2fcb50ea1
Size: 171.59 kB