CVE Vulnerabilities

CVE-2012-1616

Published: Jun 21, 2012 | Modified: Aug 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
9.3 HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Use-after-free vulnerability in icclib before 2.13, as used by Argyll CMS before 1.4 and possibly other programs, allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted ICC profile file.

Affected Software

Name Vendor Start Version End Version
Argyllcms Argyllcms 0.2.2 0.2.2
Icclib Color 2.00 2.00
Argyllcms Argyllcms 1.1.1 1.1.1
Argyllcms Argyllcms 1.3.0 1.3.0
Argyllcms Argyllcms 1.3.5 1.3.5
Argyllcms Argyllcms 1.3.1 1.3.1
Argyllcms Argyllcms 1.0.4 1.0.4
Argyllcms Argyllcms 0.6.0 0.6.0
Icclib Color 1.23 1.23
Argyllcms Argyllcms 0.1.0 0.1.0
Icclib Color * 2.11
Argyllcms Argyllcms 0.7.0 0.7.0
Argyllcms Argyllcms 1.0.3 1.0.3
Icclib Color 2.03 2.03
Argyllcms Argyllcms 0.2.1 0.2.1
Icclib Color 2.02 2.02
Argyllcms Argyllcms 0.2.0 0.2.0
Argyllcms Argyllcms 1.3.6 1.3.6
Argyllcms Argyllcms 0.3.0 0.3.0
Argyllcms Argyllcms 1.0.2 1.0.2
Argyllcms Argyllcms 1.3.2 1.3.2
Argyllcms Argyllcms 1.3.3 1.3.3
Argyllcms Argyllcms * 1.3.7
Argyllcms Argyllcms 1.1.0 1.1.0
Argyllcms Argyllcms 1.2.0 1.2.0
Argyllcms Argyllcms 1.3.4 1.3.4
Argyllcms Argyllcms 1.0.0 1.0.0

References