CESA-2007-001 - rev 1

[See all my vulnerabilities at http://scary.beasts.org/security]

lcms ICC parser flaws

Programs affected: lcms-1.13
Fixed in: lcms-1.15
Advisory release date: May 15th 2007.
Severity: Probable remote compromise of systems which use the vulnerable lcms library to parse ICC profiles.

Demo JPG: http://scary.beasts.org/misc/badicc4.jpg . Run with "jpegicc badicc4.jpg out.jpg". Seems to be a classic stack-based buffer overflow.

CESA-2007-001 - rev 1
Chris Evans