CVE 2009-0793
cmsxform.c in LittleCMS (aka lcms or liblcms) 1.18, as used in OpenJDK and other products, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted image that triggers execution of incorrect code for "transformations of monochrome profiles."
Related bugs and status
CVE-2009-0793 (Candidate) is related to these bugs:
Bug #694364: Merge lcms 1.18.dfsg-1.2 (main) from Debian unstable (main)
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 694364 | Merge lcms 1.18.dfsg-1.2 (main) from Debian unstable (main) | lcms (Ubuntu) | Medium | Fix Released | ||
Bug #700198: CVE-2009-0793
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 700198 | CVE-2009-0793 | lcms (Ubuntu) | Undecided | Fix Released | ||
| 700198 | CVE-2009-0793 | openjdk-6 (Ubuntu) | Low | Fix Released | ||
| 700198 | CVE-2009-0793 | openjdk-6b18 (Ubuntu) | Low | Fix Released | ||
| 700198 | CVE-2009-0793 | gimp (Ubuntu) | Undecided | Invalid | ||
| 700198 | CVE-2009-0793 | ia32-libs (Ubuntu) | Low | Fix Released | ||
| 700198 | CVE-2009-0793 | gimp (Ubuntu Hardy) | Undecided | Invalid | ||
| 700198 | CVE-2009-0793 | ia32-libs (Ubuntu Hardy) | Low | Fix Released | ||
| 700198 | CVE-2009-0793 | lcms (Ubuntu Hardy) | Low | Fix Released | ||
| 700198 | CVE-2009-0793 | openjdk-6 (Ubuntu Hardy) | Low | Fix Released | ||
| 700198 | CVE-2009-0793 | openjdk-6b18 (Ubuntu Hardy) | Undecided | Invalid | ||
| 700198 | CVE-2009-0793 | gimp (Ubuntu Karmic) | Undecided | Invalid | ||
| 700198 | CVE-2009-0793 | ia32-libs (Ubuntu Karmic) | Low | Fix Released | ||
| 700198 | CVE-2009-0793 | lcms (Ubuntu Karmic) | Low | Fix Released | ||
| 700198 | CVE-2009-0793 | openjdk-6 (Ubuntu Karmic) | Undecided | Fix Released | ||
| 700198 | CVE-2009-0793 | openjdk-6b18 (Ubuntu Karmic) | Undecided | Invalid | ||
| 700198 | CVE-2009-0793 | gimp (Ubuntu Lucid) | Undecided | Invalid | ||
| 700198 | CVE-2009-0793 | ia32-libs (Ubuntu Lucid) | Low | Fix Released | ||
| 700198 | CVE-2009-0793 | lcms (Ubuntu Lucid) | Low | Fix Released | ||
| 700198 | CVE-2009-0793 | openjdk-6 (Ubuntu Lucid) | Undecided | Fix Released | ||
| 700198 | CVE-2009-0793 | openjdk-6b18 (Ubuntu Lucid) | Low | Fix Released | ||
| 700198 | CVE-2009-0793 | gimp (Ubuntu Maverick) | Undecided | Invalid | ||
| 700198 | CVE-2009-0793 | ia32-libs (Ubuntu Maverick) | Low | Fix Released | ||
| 700198 | CVE-2009-0793 | lcms (Ubuntu Maverick) | Low | Fix Released | ||
| 700198 | CVE-2009-0793 | openjdk-6 (Ubuntu Maverick) | Low | Fix Released | ||
| 700198 | CVE-2009-0793 | openjdk-6b18 (Ubuntu Maverick) | Low | Fix Released | ||
| 700198 | CVE-2009-0793 | gimp (Ubuntu Natty) | Undecided | Invalid | ||
| 700198 | CVE-2009-0793 | ia32-libs (Ubuntu Natty) | Low | Fix Released | ||
| 700198 | CVE-2009-0793 | lcms (Ubuntu Natty) | Undecided | Fix Released | ||
| 700198 | CVE-2009-0793 | openjdk-6 (Ubuntu Natty) | Low | Fix Released | ||
| 700198 | CVE-2009-0793 | openjdk-6b18 (Ubuntu Natty) | Low | Fix Released | ||
Bug #823185: [MIR] colord
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 823185 | [MIR] colord | colord (Ubuntu) | High | Fix Released | ||
See the 
CVE page on Mitre.org
for more details.
