Mandriva Linux Security Advisory : lcms2 (MDVSA-2013:211)
Medium Nessus Plugin ID 69314
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionUpdated lcms2 packages fixes security vulnerability :
It was discovered that Little CMS did not properly verify certain memory allocations. If a user or automated system using Little CMS were tricked into opening a specially crafted file, an attacker could cause Little CMS to crash (CVE-2013-4160).
SolutionUpdate the affected lcms2, lib64lcms2-devel and / or lib64lcms2_2 packages.