Summary: | <media-libs/lcms-2.8-r1: Out-of-bounds read in Type_MLU_Read() (CVE-2016-10165) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Agostino Sarubbo <ago> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | Flags: | stable-bot:
sanity-check+
|
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://bugzilla.redhat.com/show_bug.cgi?id=1367357 | ||
Whiteboard: | B3 [noglsa] | ||
Package list: |
=media-libs/lcms-2.8-r1
|
Runtime testing required: | --- |
Description
Agostino Sarubbo
2016-08-17 11:43:10 UTC
lcms is bundled in various OpenJDK releases, we will need to check that. Added the patch. Testing now. (In reply to Andreas K. Hüttel from comment #2) > Added the patch. Testing now. I see no bug explosion, so let's go ahead. Arches please stabilize, target: all stable arches =media-libs/lcms-2.8-r1 amd64 stable Stable on alpha. Stable for HPPA. x86 stable arm ppc64 stable. ppc stable sparc stable ia64 stable. Maintainer(s), please cleanup. Security, please vote. Vulnerable versions removed GLSA Vote: No Repository is clean, all done. |