CVE-2016-10165 — HIGH (7.1)

Vulnerability Description

The Type_MLU_Read function in cmstypes.c in Little CMS (aka lcms2) allows remote attackers to obtain sensitive information or cause a denial of service via an image with a crafted ICC profile, which triggers an out-of-bounds heap read.

CVSS Score

7.1

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Littlecms	Little Cms Color Engine	< 2.11
Canonical	Ubuntu Linux	12.04
Debian	Debian Linux	8.0
Opensuse	Leap	42.1
Redhat	Satellite	5.8
Redhat	Enterprise Linux Desktop	5.0
Redhat	Enterprise Linux Server	5.0
Redhat	Enterprise Linux Server Aus	7.3
Redhat	Enterprise Linux Server Eus	7.3
Redhat	Enterprise Linux Server Tus	7.3
Redhat	Enterprise Linux Workstation	5.0
Netapp	Active Iq Unified Manager	>= 7.3
Netapp	E-Series Santricity Management	-
Netapp	E-Series Santricity Os Controller	11.0
Netapp	Oncommand Balance	-
Netapp	Oncommand Insight	-
Netapp	Oncommand Performance Manager	-
Netapp	Oncommand Shift	-
Netapp	Oncommand Unified Manager	-

Related Weaknesses (CWE)

CWE-125

References

http://lists.opensuse.org/opensuse-updates/2017-01/msg00174.htmlThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2016-2079.htmlThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2016-2658.htmlThird Party Advisory
http://www.debian.org/security/2017/dsa-3774Third Party Advisory
http://www.openwall.com/lists/oss-security/2017/01/23/1Mailing ListPatchThird Party Advisory
http://www.openwall.com/lists/oss-security/2017/01/25/14Mailing ListPatchThird Party Advisory
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.htmlPatch
http://www.securityfocus.com/bid/95808Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1039596Third Party AdvisoryVDB Entry
https://access.redhat.com/errata/RHSA-2017:2999Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:3046Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:3264Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:3267Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:3268Third Party Advisory
https://access.redhat.com/errata/RHSA-2017:3453Third Party Advisory

FAQ

What is CVE-2016-10165?

CVE-2016-10165 is a vulnerability with a CVSS score of 7.1 (HIGH). The Type_MLU_Read function in cmstypes.c in Little CMS (aka lcms2) allows remote attackers to obtain sensitive information or cause a denial of service via an image with a crafted ICC profile, which t...

How severe is CVE-2016-10165?

CVE-2016-10165 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2016-10165?

Check the references section above for vendor advisories and patch information. Affected products include: Littlecms Little Cms Color Engine, Canonical Ubuntu Linux, Debian Debian Linux, Opensuse Leap, Redhat Satellite.