Total vulnerabilities in the database
Multiple integer overflows in LittleCMS (aka lcms or liblcms) before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent attackers to execute arbitrary code via a crafted image file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.
| Software | From | Fixed in |
|---|---|---|
| mozilla / firefox | 3.1-beta1 | 3.1-beta1.x |
| gimp / gimp | - | - |
| sun / openjdk | - | 7.x |
| littlecms / little_cms | - | 1.17.x |