SuSE 11.2 / 11.3 Security Update : lcms (SAT Patch Numbers 8424 / 8425)
Medium Nessus Plugin ID 71035
SynopsisThe remote SuSE 11 host is missing one or more security updates.
DescriptionThe lcms userland utilities were updated to fix stack overflows.
- Multiple stack-based buffer overflows in LittleCMS allowed remote attackers to cause a denial of service (crash) via a crafted (1) ICC color profile to the icctrans utility or (2) TIFF image to the tiffdiff utility. (CVE-2013-4276)
SolutionApply SAT patch number 8424 / 8425 as appropriate.