Scientific Linux Security Update : lcms on SL5.x i386/x86_64
Critical Nessus Plugin ID 60512
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionMultiple insufficient input validation flaws were discovered in LittleCMS. An attacker could use these flaws to create a specially crafted image file which could cause an application using LittleCMS to crash, or, possibly, execute arbitrary code when opened.
SolutionUpdate the affected lcms, lcms-devel and / or python-lcms packages.