VulnerableCode Package Details - pkg:deb/debian/lcms2@2.2%2Bgit20110628-2.2%2Bdeb7u1

Search for packages

Package details: pkg:deb/debian/lcms2@2.2%2Bgit20110628-2.2%2Bdeb7u1

Essentials
History (7)

purl	pkg:deb/debian/lcms2@2.2%2Bgit20110628-2.2%2Bdeb7u1

Next non-vulnerable version	2.9-3
Latest non-vulnerable version	2.9-3
Risk	3.2

Vulnerabilities affecting this package (5)

Vulnerability	Summary	Fixed by
VCID-13tb-t69z-nqbr Aliases: CVE-2013-7455		2.6-3 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-cj72-r1tx-4fd9 Aliases: CVE-2016-10165		2.6-3+deb8u1 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} 2.8-4+deb9u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-p9v3-eg55-zuhb Aliases: CVE-2013-4160		2.6-3 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-qkv7-ygu7-47a3 Aliases: CVE-2018-16435	Little CMS (aka Little Color Management System) 2.9 has an integer overflow in the AllocateDataSet function in cmscgats.c, leading to a heap-based buffer overflow in the SetData function via a crafted file in the second argument to cmsIT8LoadFromFile.	2.8-4+deb9u1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} 2.9-3 Affected by 0 other vulnerabilities.
VCID-qwza-emp3-cucv Aliases: CVE-2014-0459		2.6-3 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-08-01T17:34:31.711935+00:00	Debian Oval Importer	Affected by	VCID-13tb-t69z-nqbr	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T16:39:43.359511+00:00	Debian Oval Importer	Affected by	VCID-cj72-r1tx-4fd9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T14:14:14.256763+00:00	Debian Oval Importer	Affected by	VCID-qwza-emp3-cucv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T13:36:50.206636+00:00	Debian Oval Importer	Affected by	VCID-qkv7-ygu7-47a3	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T12:09:14.807118+00:00	Debian Oval Importer	Affected by	VCID-p9v3-eg55-zuhb	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	37.0.0
2025-08-01T10:38:43.996455+00:00	Debian Oval Importer	Affected by	VCID-qkv7-ygu7-47a3	https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2	37.0.0
2025-08-01T10:03:48.151051+00:00	Debian Oval Importer	Affected by	VCID-cj72-r1tx-4fd9	https://www.debian.org/security/oval/oval-definitions-jessie.xml.bz2	37.0.0