Share your story
The central voice for Linux and Open Source security news
Home News Topics Advisories HOWTOs Features Newsletters About Register

Sign up!
EnGarde Community
What is the most important Linux security technology?
Linux Events
Linux User Groups
Link to Us
Security Center
Book Reviews
Security Dictionary
Security Tips
White Papers
Featured Blogs
All About Linux
DanWalsh LiveJournal
Latest Newsletters
Linux Security Week: March 23rd, 2015
Linux Advisory Watch: March 20th, 2015
LinuxSecurity Newsletters
Choose Lists:
About our Newsletters
RSS Feeds
Get the LinuxSecurity news you want faster with RSS
Powered By

Ubuntu: 1043-1: Little CMS vulnerability Print E-mail
User Rating:      How can I rate this item?
Posted by Benjamin D. Thomas   
Ubuntu It was discovered that a NULL pointer dereference in the code forhandling transformations of monochrome profiles could allow an attackerto cause a denial of service through a specially crafted image.(CVE-2009-0793) [More...]
Ubuntu Security Notice USN-1043-1          January 12, 2011
lcms vulnerability

A security issue affects the following Ubuntu releases:

Ubuntu 8.04 LTS
Ubuntu 9.10
Ubuntu 10.04 LTS
Ubuntu 10.10

This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the
following package versions:

Ubuntu 8.04 LTS:
  liblcms1                        1.16-7ubuntu1.3

Ubuntu 9.10:
  liblcms1                        1.18.dfsg-1ubuntu1.1

Ubuntu 10.04 LTS:
  liblcms1                        1.18.dfsg-1ubuntu2.10.04.1

Ubuntu 10.10:
  liblcms1                        1.18.dfsg-1ubuntu2.10.10.1

In general, a standard system update will make all the necessary changes.

Details follow:

It was discovered that a NULL pointer dereference in the code for
handling transformations of monochrome profiles could allow an attacker
to cause a denial of service through a specially crafted image.

Updated packages for Ubuntu 8.04 LTS:

  Source archives:
      Size/MD5:    26887 e6f7f18b9c8c161cb28b1050ae37a7dc
      Size/MD5:     1651 061a51a9590122c929a55f97c9af18fe
      Size/MD5:   911546 b07b623f3e712373ff713fb32cf23651

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):
      Size/MD5:   670522 387faeb68c6f2905f4d4dc2e92281394
      Size/MD5:   102812 6c0de134fe6e13d9084017c8a848948a
      Size/MD5:    58336 faea24641f0e5dc794162a38b8094fbf
      Size/MD5:   160930 658fad1a8975dfa01c7c339f57dedff2

  i386 architecture (x86 compatible Intel/AMD):
      Size/MD5:   623192 b25d76f8313405e1769b4d90fbedb59c
      Size/MD5:    96346 573a2703a7a72dce8eac9814eefd972e
      Size/MD5:    55076 889cd8eea3a342112ebde9cb1f64ddaa
      Size/MD5:   151876 193ce09714ae6406c9cb3fc651f5db37

  lpia architecture (Low Power Intel Architecture):
      Size/MD5:   629032 f61b32be0b27f2e22a8ba6900adcba69
      Size/MD5:    95696 b09d6d68c67b6059af6c1f66cde7532d
      Size/MD5:    55482 e03b3e83151acf00e8424be1fa559c27
      Size/MD5:   148576 eea063a2108327909f558a7557472655

  powerpc architecture (Apple Macintosh G3/G4/G5):
      Size/MD5:   756434 602ae82dcfe35b986dc0d6d7b91953b0
      Size/MD5:   111268 ef7755b8247f285f679e19e317107992
      Size/MD5:    72292 4cfe0928f7f1e79300384fea59b547bc
      Size/MD5:   169436 4f66b2ebaace414adb1b92c9b30c1130

  sparc architecture (Sun SPARC/UltraSPARC):
      Size/MD5:   655626 d02eadf3af5519883a25e056fdaafce1
      Size/MD5:    98876 f9edda48f4d3051452fb694f2f05c1df
      Size/MD5:    57910 b32b9a857d42b1b0578d749d166b878e
      Size/MD5:   159914 d77eeb49466255f257aa1e11cc696a5f

Updated packages for Ubuntu 9.10:

  Source archives:
      Size/MD5:     9795 2a5bc68b26b8727643fbb5ea97a74b3b
      Size/MD5:     2024 cf857a038ae254d4b107c5d81d6cf64b
      Size/MD5:   894456 2d4078499413febf56db0bcc1d8d4eb9

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):
      Size/MD5:   202526 6348d916764c5cb8f6382079843f324a
      Size/MD5:   110408 f9c75298dba3171ba1109b1120ad0831
      Size/MD5:    62414 8d3b0a4822016b31a2bb1214a183a75a
      Size/MD5:   157812 ab4a2662a35f8909c2c0dfbf35122963

  i386 architecture (x86 compatible Intel/AMD):
      Size/MD5:   195170 5256a4ac32e45fb6e08331b736e25aad
      Size/MD5:   103200 583eba21821f02dd1c65a6df84f970c8
      Size/MD5:    56996 aaf30568cb8da7faf3a07650445874c7
      Size/MD5:   151354 13d4ece3945be36a6f440f50195c827b

  armel architecture (ARM Architecture):
      Size/MD5:   190306 8d22c071ec2838bb21302efdcbeb626d
      Size/MD5:   102332 2c29a8beaece5d77c988725e7c6b25ee
      Size/MD5:    57332 f4d5286b2a3bc760af9cd5c405dc2d93
      Size/MD5:   134906 41d7f494e2ace18cbbf4c3b86fda3359

  lpia architecture (Low Power Intel Architecture):
      Size/MD5:   190880 361076583a35d44798ce89d5638adf91
      Size/MD5:   101256 bfcb8f35dcefa052b08bbd5e5728ccae
      Size/MD5:    57728 c4f8b20d28d231af6c16e226c403ffe5
      Size/MD5:   147322 f80f89bd1b6babf76e71f90b86d40e42

  powerpc architecture (Apple Macintosh G3/G4/G5):
      Size/MD5:   203148 d8506d1f197640d414916324fa4267d5
      Size/MD5:   114880 2ed6d9e05b95392506086045306fd3cb
      Size/MD5:    59120 b2e59befb313a9aa02a524153529d79a
      Size/MD5:   165064 0a390a3e26bbbac204169e9a33a8b70f

  sparc architecture (Sun SPARC/UltraSPARC):
      Size/MD5:   201662 210aec30d1353f9a3f2d6fb3f1984236
      Size/MD5:   106348 8621813760664bb1be69ccc10dc193c4
      Size/MD5:    62910 84de59111b2ffc6af10604c8dbf2f918
      Size/MD5:   157730 2e8617fa92b8fe5a1b3408606e0aedc4

Updated packages for Ubuntu 10.04 LTS:

  Source archives:
      Size/MD5:     9897 50c87fff6501f9194d8417254fbeaa00
      Size/MD5:     2048 6316f6fdaca98550248d454f218c8aa8
      Size/MD5:   894456 2d4078499413febf56db0bcc1d8d4eb9

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):
      Size/MD5:   202574 4e5ca751960544d924b6121281992160
      Size/MD5:   110512 5206b4b12680e17805854d22ceda3937
      Size/MD5:    62666 49174698da1bfbe2d92f81a5ec14d343
      Size/MD5:   160052 9656fec5eb5151ec51aa5d3db5ec99c2

  i386 architecture (x86 compatible Intel/AMD):
      Size/MD5:   195106 cd26a05adb7ccae9d3d63200d743f788
      Size/MD5:   103198 5c206024aa735e47cc50fd87d475e2e2
      Size/MD5:    57140 4599e95ee9101596195863e723e5093a
      Size/MD5:   153566 a11f5a31a4246f0a385e6c9d9ea7ab83

  armel architecture (ARM Architecture):
      Size/MD5:   181894 0c3fe9347b13d10251b14c3d22037275
      Size/MD5:    97396 a7275c6d01601e9ba3a36c0f46e38dee
      Size/MD5:    56768 59f92a7982c01a2340547d093930373b
      Size/MD5:   137474 7af33a654f466ffe55554f05b3652bf6

  powerpc architecture (Apple Macintosh G3/G4/G5):
      Size/MD5:   203320 1d35c8ed6530d60354667944d75ce757
      Size/MD5:   115178 4f7d8c233e5f27e0794fd2a1f753fb7d
      Size/MD5:    59198 5354d3f927fb0957a7280ad20522cd5f
      Size/MD5:   167004 4181e185eb4290f4a506cc6a5ef23332

  sparc architecture (Sun SPARC/UltraSPARC):
      Size/MD5:   206764 60b6b0499d3d70b45b0c12e160ccfaea
      Size/MD5:   110080 ee7259f8b863616c4fc1d5a85695b5ea
      Size/MD5:    64514 7d23af820f62f7efdcadcb8e08d3675d
      Size/MD5:   159334 974383cd3fd688a1003ec99b3a9113b6

Updated packages for Ubuntu 10.10:

  Source archives:
      Size/MD5:    10114 20e7514ba0acbe330b94a4cbce98c605
      Size/MD5:     2051 fafeffac18c542d6de316209251f73ad
      Size/MD5:   894456 2d4078499413febf56db0bcc1d8d4eb9

  amd64 architecture (Athlon64, Opteron, EM64T Xeon):
      Size/MD5:   202754 cfdbfd84af2006dc76a1372cd15f6190
      Size/MD5:   109764 abd8626f2895847dcfa2ab2ab6159797
      Size/MD5:    60076 f1a2fa552f9e06608800457d84fcba5c
      Size/MD5:   159182 8bd5175d44cc41372d483d3c6f5826f4

  i386 architecture (x86 compatible Intel/AMD):
      Size/MD5:   194744 f32a720f427204fed94e710d68af64fa
      Size/MD5:   101774 18c07cb47c8aa5d98eea25a88addb09e
      Size/MD5:    55894 6eb6f435d3fb932825a889cb907a61eb
      Size/MD5:   150354 5bd5c8298068a83dc7d4340899d3cdbf

  armel architecture (ARM Architecture):
      Size/MD5:   193432 2385281b25960d18f6c11fed43bd5db3
      Size/MD5:   107328 48594ec3346b71b7f8d57654f011dc88
      Size/MD5:    57502 167efcb36ab71e3d7ffb5d02ccd6d2b3
      Size/MD5:   139296 cf71751aeb49497b7c277faa31f02d81

  powerpc architecture (Apple Macintosh G3/G4/G5):
      Size/MD5:   203088 05a41447398de2349516957ec6bfcd9c
      Size/MD5:   114178 c62a0f29535d5422ede2b40daeb75ca2
      Size/MD5:    57940 53f47bd1f12f0f15faf1e04cd4827dc9
      Size/MD5:   166136 d069de5b989d6d11fff002a0f823e0f3

< Prev   Next >


Latest Features
Peter Smith Releases Linux Network Security Online
Securing a Linux Web Server
Password guessing with Medusa 2.0
Password guessing as an attack vector
Squid and Digest Authentication
Squid and Basic Authentication
Demystifying the Chinese Hacking Industry: Earning 6 Million a Night
Free Online security course (LearnSIA) - A Call for Help
What You Need to Know About Linux Rootkits
Review: A Practical Guide to Fedora and Red Hat Enterprise Linux - Fifth Edition
Yesterday's Edition
Tech Companies, Privacy Advocates Call for NSA Reform
Google warns of unauthorized TLS certificates trusted by almost all OSes
How Kevin Mitnick hacked the audience at CeBIT 2015
Partner Sponsor

Community | HOWTOs | Blogs | Features | Book Reviews | Networking
 Security Projects |  Latest News |  Newsletters |  SELinux |  Privacy |  Home
 Hardening |   About Us |   Advertise |   Legal Notice |   RSS |   Guardian Digital
(c)Copyright 2015 Guardian Digital, Inc. All rights reserved.