CVE-2025-29070 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A heap buffer overflow vulnerability has been identified in thesmooth2() in cmsgamma.c in lcms2-2.16 which allows a remote attacker to cause a denial of service…
High CVSS: 7.5

CVE-2025-29070

A heap buffer overflow vulnerability has been identified in thesmooth2() in cmsgamma.c in lcms2-2.16 which allows a remote attacker to cause a denial of service. NOTE: the Supplier disputes this because "this is not exploitable as this function is never called on normal color management, is there only as a helper for low-level programming and investigation."
Vendor
-
Product
-
CWE
CWE-122
Yayın Tarihi
2025-04-01 21:15:44
Güncelleme
2025-04-04 21:15:45
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-122 HIGH 2025

Referanslar

https://github.com/mm2/Little-CMS/issues/475 https://github.com/mm2/Little-CMS/issues/475#issuecomment-2696785063