Marti Maria

5 exploits Active since Jan 2014
CVE-2026-41254 WRITEUP MEDIUM WRITEUP
Little CMS < 2.18 - Integer Overflow in CubeSize
Little CMS (lcms2) through 2.18 has an integer overflow in CubeSize in cmslut.c because the overflow check is performed after the multiplication.
CVSS 4.0
CVE-2026-42798 WRITEUP MEDIUM WRITEUP
Little CMS 2.16-2.18 - Integer Overflow
Little CMS (lcms2) 2.16 through 2.18 before 2.19 has an integer overflow in ParseCube in cmscgats.c.
CVSS 4.0
CVE-2026-41254 WRITEUP MEDIUM WRITEUP
Little CMS < 2.18 - Integer Overflow in CubeSize
Little CMS (lcms2) through 2.18 has an integer overflow in CubeSize in cmslut.c because the overflow check is performed after the multiplication.
CVSS 4.0
CVE-2013-4160 WRITEUP WRITEUP
Little CMS < 2.5 - Denial of Service via NULL Pointer Dereference
Little CMS (lcms2) before 2.5, as used in OpenJDK 7 and possibly other products, allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via vectors related to (1) cmsStageAllocLabV2ToV4curves, (2) cmsPipelineDup, (3) cmsAllocProfileSequenceDescription, (4) CurvesAlloc, and (5) cmsnamed.
CVE-2018-16435 WRITEUP MEDIUM WRITEUP
Little CMS 2.9 - Heap-Based Buffer Overflow via Crafted File in cmsIT8LoadFromFile
Little CMS (aka Little Color Management System) 2.9 has an integer overflow in the AllocateDataSet function in cmscgats.c, leading to a heap-based buffer overflow in the SetData function via a crafted file in the second argument to cmsIT8LoadFromFile.
CVSS 5.5