Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

USN-652-1: LittleCMS vulnerability

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) USN-652-1: LittleCMS vulnerability
# 1  
Old 10-14-2008
USN-652-1: LittleCMS vulnerability
Referenced CVEs:
CVE-2007-2741


Description:
=========================================================== Ubuntu Security Notice USN-652-1 October 14, 2008 lcms vulnerability CVE-2007-2741 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. The problem can be corrected by upgrading your system to the following package versions: Ubuntu 6.06 LTS: liblcms1 1.13-1ubuntu0.1 In general, a standard system upgrade is sufficient to effect the necessary changes. Details follow: Chris Evans discovered that certain ICC operations in lcms were not correctly bounds-checked. If a user or automated system were tricked into processing an image with malicious ICC tags, a remote attacker could crash applications linked against liblcms1, leading to a denial of service, or possibly execute arbitrary code with user privileges.





More...
Login or Register to Ask a Question

Previous Thread | Next Thread
Login or Register to Ask a Question

LEARN ABOUT DEBIAN

germinate-pkg-diff

GERMINATE-PKG-DIFF(1)					  Ubuntu General Commands Manual				     GERMINATE-PKG-DIFF(1)

NAME

     germinate-pkg-diff -- compare seeds against currently installed packages

SYNOPSIS

     germinate-pkg-diff [-l file] [-m {i|r|d}] [-a arch] [seeds]

DESCRIPTION

     germinate-pkg-diff compares the expansion of a list of seed packages against the set of packages installed on the current system.	When con-
     structing seeds for a software distribution, it can be used to iteratively find packages installed on developers' systems that should be
     included in the seeds.

     A list of seeds against which to compare may be supplied as non-option arguments.	Seeds from which they inherit will be added automatically.
     The default is 'desktop'.

OPTIONS

     -l, --list file
	   Read the list of currently installed packages from file.  The default is to read the output of dpkg --get-selections, and any supplied
	   file should be in the same format.

     -m, --mode {i|r|d}
	   Set the output mode as follows:

	   i	 Show the dpkg selections needed to install just these seeds.  List unseeded but installed files as ``deinstall'', and seeded but
		 uninstalled files as ``install''.

	   r	 List unseeded but installed files as ``install'', and seeded but uninstalled files as ``deinstall''.

	   d	 Show the differences between the packages specified by the seeds and the list of installed packages, in a somewhat diff-like for-
		 mat.

     -S, --seed-source source,...
	   Fetch seeds from the specified sources.  The default is http://people.canonical.com/~ubuntu-archive/seeds/.

     -s, --seed-dist dist
	   Fetch seeds for distribution dist.  The default is ubuntu.precise.

     -d, --dist dist,...
	   Operate on the specified distributions.  The default is precise.  Listing multiple distributions may be useful, for example, when exam-
	   ining both a released distribution and its security updates.

     -a, --arch arch
	   Operate on architecture arch.  The default is i386.

BUGS

     --mode r is useless as dpkg --set-selections input.

AUTHORS

     Lamont Jones <lamont@ubuntu.com>
     Colin Watson <cjwatson@canonical.com>

     germinate-pkg-diff is copyright (C) 2004, 2005, 2006, 2007, 2008 Canonical Ltd.  See the GNU General Public License version 2 or later for
     copying conditions.  A copy of the GNU General Public License is available in /usr/share/common-licenses/GPL.

Ubuntu								   Jul 18, 2007 							    Ubuntu