[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2009-0581":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":35,"duplicate_of":9,"upstream":36,"downstream":37,"duplicates":46,"related":47,"reserved_at":9,"published_at":48,"modified_at":49,"state":50,"summary":51,"references_raw":59,"kevs":250,"epss":251,"epss_history":254,"metrics":506,"affected":511},"CVE-2009-0581","Memory leak in LittleCMS (aka lcms or liblcms) before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allows context-dependent attackers to cause a denial of service (memory consumption and application crash) via a crafted image file.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-401","Missing Release of Memory after Effective Lifetime","The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.","weakness","Draft","Variant","Medium",[],[21,30],{"_key":22,"name":23,"source":24,"url":25,"maturity":26,"reliability_score":27,"verified":28,"type":9,"platforms":29,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_DD76642AF3E58189","Exploit Reference (scary.beasts.org)","reference","http://scary.beasts.org/security/CESA-2009-003.html","unknown",0.2,false,[],{"_key":31,"name":32,"source":24,"url":33,"maturity":26,"reliability_score":27,"verified":28,"type":9,"platforms":34,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_8601C6F91B18E6EA","Exploit Reference (scarybeastsecurity.blogspot.com)","http://scarybeastsecurity.blogspot.com/2009/03/littlecms-vulnerabilities.html",[],[],[],[38,40,42,44],{"_key":39},"RHSA-2009:0339",{"_key":41},"RHSA-2009:0377",{"_key":43},"DSA-1745-1",{"_key":45},"DSA-1769-1",[],[],"2009-03-23T14:00:00.000Z","2024-08-07T04:40:04.074Z","Modified",{"cisa_kev":28,"cisa_ransomware":28,"cisa_vendor":9,"epss_severity":52,"epss_score":53,"severity":54,"severity_score":55,"severity_version":56,"severity_source":57,"severity_vector":58,"severity_status":50},"low",0.01893,"medium",4.3,"v2.0","nvd","AV:N/AC:M/Au:N/C:N/I:N/A:P",[60,68,74,79,83,87,92,97,102,106,112,116,121,125,129,133,137,142,146,151,155,161,166,170,173,177,181,185,189,195,199,203,207,211,215,219,225,229,236,241,246],{"url":61,"sources":62,"tags":64},"https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00851.html",[63,57],"cve.org",[65,66,67],"Vendor Advisory","X Refsource FEDORA","Third Party Advisory",{"url":69,"sources":70,"tags":71},"http://www.mandriva.com/security/advisories?name=MDVSA-2009:137",[63,57],[65,72,73],"X Refsource MANDRIVA","Broken Link",{"url":75,"sources":76,"tags":77},"http://secunia.com/advisories/34632",[63,57],[67,78,73],"X Refsource SECUNIA",{"url":80,"sources":81,"tags":82},"http://secunia.com/advisories/34450",[63,57],[67,78,73],{"url":84,"sources":85,"tags":86},"https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00811.html",[63,57],[65,66,67],{"url":88,"sources":89,"tags":90},"http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00004.html",[63,57],[65,91,67],"X Refsource SUSE",{"url":93,"sources":94,"tags":95},"http://www.ubuntu.com/usn/USN-744-1",[63,57],[65,96,67],"X Refsource UBUNTU",{"url":98,"sources":99,"tags":100},"http://www.debian.org/security/2009/dsa-1745",[63,57],[65,101,67],"X Refsource DEBIAN",{"url":103,"sources":104,"tags":105},"http://secunia.com/advisories/34675",[63,57],[67,78,73],{"url":107,"sources":108,"tags":109},"https://exchange.xforce.ibmcloud.com/vulnerabilities/49328",[63,57],[110,111,67],"VDB Entry","X Refsource XF",{"url":113,"sources":114,"tags":115},"http://secunia.com/advisories/34454",[63,57],[67,78,73],{"url":117,"sources":118,"tags":119},"http://www.securitytracker.com/id?1021870",[63,57],[110,120,67],"X Refsource SECTRACK",{"url":122,"sources":123,"tags":124},"http://secunia.com/advisories/34442",[63,57],[67,78,73],{"url":126,"sources":127,"tags":128},"https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00856.html",[63,57],[65,66,67],{"url":130,"sources":131,"tags":132},"https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00921.html",[63,57],[65,66,67],{"url":134,"sources":135,"tags":136},"https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00794.html",[63,57],[65,66,67],{"url":25,"sources":138,"tags":139},[63,57],[140,141],"X Refsource MISC","Exploit",{"url":143,"sources":144,"tags":145},"http://secunia.com/advisories/34382",[63,57],[67,78,73],{"url":147,"sources":148,"tags":149},"http://slackware.com/security/viewer.php?l=slackware-security&y=2009&m=slackware-security.487438",[63,57],[65,150,67],"X Refsource SLACKWARE",{"url":152,"sources":153,"tags":154},"http://secunia.com/advisories/34418",[63,57],[67,78,73],{"url":156,"sources":157,"tags":158},"http://www.securityfocus.com/archive/1/502031/100/0/threaded",[63,57],[159,160,73,67,110],"Mailing List","X Refsource BUGTRAQ",{"url":162,"sources":163,"tags":164},"https://rhn.redhat.com/errata/RHSA-2009-0377.html",[63,57],[65,165,67],"X Refsource REDHAT",{"url":167,"sources":168,"tags":169},"http://www.ocert.org/advisories/ocert-2009-003.html",[63,57],[140,67],{"url":33,"sources":171,"tags":172},[63,57],[140,141],{"url":174,"sources":175,"tags":176},"http://secunia.com/advisories/34782",[63,57],[67,78,73],{"url":178,"sources":179,"tags":180},"http://secunia.com/advisories/34367",[63,57],[67,78,73],{"url":182,"sources":183,"tags":184},"http://www.mandriva.com/security/advisories?name=MDVSA-2009:162",[63,57],[65,72,73],{"url":186,"sources":187,"tags":188},"http://www.redhat.com/support/errata/RHSA-2009-0339.html",[63,57],[65,165,67],{"url":190,"sources":191,"tags":192},"http://www.vupen.com/english/advisories/2009/0775",[63,57],[110,193,194,65],"X Refsource VUPEN","Patch",{"url":196,"sources":197,"tags":198},"http://secunia.com/advisories/34463",[63,57],[67,78,73],{"url":200,"sources":201,"tags":202},"http://secunia.com/advisories/34408",[63,57],[67,78,73],{"url":204,"sources":205,"tags":206},"http://www.debian.org/security/2009/dsa-1769",[63,57],[65,101,67],{"url":208,"sources":209,"tags":210},"http://secunia.com/advisories/34400",[63,57],[67,78,73],{"url":212,"sources":213,"tags":214},"http://www.mandriva.com/security/advisories?name=MDVSA-2009:121",[63,57],[65,72,73],{"url":216,"sources":217,"tags":218},"http://www.securityfocus.com/archive/1/502018/100/0/threaded",[63,57],[159,160,73,67,110],{"url":220,"sources":221,"tags":222},"https://bugzilla.redhat.com/show_bug.cgi?id=487509",[63,57],[223,224],"X Refsource CONFIRM","Issue Tracking",{"url":226,"sources":227,"tags":228},"https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00799.html",[63,57],[65,66,67],{"url":230,"sources":231,"tags":232},"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10023",[63,57],[110,233,234,235],"Signature","X Refsource OVAL","Tool Signature",{"url":237,"sources":238,"tags":239},"http://www.securityfocus.com/bid/34185",[63,57],[110,240,194,67],"X Refsource BID",{"url":242,"sources":243,"tags":244},"http://security.gentoo.org/glsa/glsa-200904-19.xml",[63,57],[65,245,67],"X Refsource GENTOO",{"url":247,"sources":248,"tags":249},"https://www.redhat.com/archives/fedora-package-announce/2009-March/msg00857.html",[63,57],[65,66,67],[],{"date":252,"score":53,"percentile":253},"2026-06-04",0.83543,[255,259,262,265,268,271,274,276,279,282,285,288,290,293,296,299,301,304,306,309,312,315,318,320,323,326,329,331,334,337,339,342,345,348,350,353,356,359,362,365,368,370,372,375,378,381,384,387,389,392,394,397,400,403,406,409,411,414,417,420,423,426,429,432,435,437,439,442,444,447,449,452,455,458,460,463,466,469,472,475,478,481,484,487,489,492,495,497,500,503],{"date":256,"score":257,"percentile":258},"2025-11-04",0.0212,0.83552,{"date":260,"score":257,"percentile":261},"2025-11-05",0.83557,{"date":263,"score":257,"percentile":264},"2025-11-06",0.8356,{"date":266,"score":257,"percentile":267},"2025-11-07",0.83567,{"date":269,"score":257,"percentile":270},"2025-11-08",0.83571,{"date":272,"score":257,"percentile":273},"2025-11-09",0.83565,{"date":275,"score":257,"percentile":264},"2025-11-10",{"date":277,"score":257,"percentile":278},"2025-11-11",0.83564,{"date":280,"score":257,"percentile":281},"2025-11-12",0.83576,{"date":283,"score":257,"percentile":284},"2025-11-13",0.83583,{"date":286,"score":257,"percentile":287},"2025-11-14",0.83585,{"date":289,"score":257,"percentile":281},"2025-11-15",{"date":291,"score":257,"percentile":292},"2025-11-16",0.83577,{"date":294,"score":257,"percentile":295},"2025-11-17",0.83575,{"date":297,"score":257,"percentile":298},"2025-11-18",0.82733,{"date":300,"score":257,"percentile":298},"2025-11-19",{"date":302,"score":257,"percentile":303},"2025-11-20",0.82737,{"date":305,"score":257,"percentile":284},"2025-11-21",{"date":307,"score":257,"percentile":308},"2025-11-22",0.83579,{"date":310,"score":257,"percentile":311},"2025-11-23",0.83573,{"date":313,"score":257,"percentile":314},"2025-11-24",0.83574,{"date":316,"score":257,"percentile":317},"2025-11-25",0.8357,{"date":319,"score":257,"percentile":317},"2025-11-26",{"date":321,"score":257,"percentile":322},"2025-11-27",0.83569,{"date":324,"score":257,"percentile":325},"2025-11-28",0.83559,{"date":327,"score":257,"percentile":328},"2025-11-29",0.83581,{"date":330,"score":257,"percentile":287},"2025-11-30",{"date":332,"score":53,"percentile":333},"2025-12-01",0.8271,{"date":335,"score":53,"percentile":336},"2025-12-02",0.82713,{"date":338,"score":53,"percentile":336},"2025-12-03",{"date":340,"score":53,"percentile":341},"2025-12-04",0.82632,{"date":343,"score":53,"percentile":344},"2025-12-05",0.8264,{"date":346,"score":53,"percentile":347},"2025-12-06",0.82637,{"date":349,"score":53,"percentile":341},"2025-12-07",{"date":351,"score":53,"percentile":352},"2025-12-08",0.82635,{"date":354,"score":53,"percentile":355},"2025-12-09",0.82655,{"date":357,"score":53,"percentile":358},"2025-12-10",0.82679,{"date":360,"score":53,"percentile":361},"2025-12-11",0.82695,{"date":363,"score":53,"percentile":364},"2025-12-12",0.82701,{"date":366,"score":53,"percentile":367},"2025-12-13",0.82697,{"date":369,"score":53,"percentile":361},"2025-12-14",{"date":371,"score":53,"percentile":361},"2025-12-15",{"date":373,"score":53,"percentile":374},"2025-12-16",0.82703,{"date":376,"score":53,"percentile":377},"2025-12-17",0.82711,{"date":379,"score":53,"percentile":380},"2025-12-18",0.82719,{"date":382,"score":53,"percentile":383},"2025-12-19",0.82723,{"date":385,"score":53,"percentile":386},"2025-12-20",0.82716,{"date":388,"score":53,"percentile":336},"2025-12-21",{"date":390,"score":53,"percentile":391},"2025-12-22",0.82717,{"date":393,"score":53,"percentile":383},"2025-12-23",{"date":395,"score":53,"percentile":396},"2025-12-24",0.82729,{"date":398,"score":53,"percentile":399},"2025-12-25",0.82744,{"date":401,"score":53,"percentile":402},"2025-12-26",0.82748,{"date":404,"score":53,"percentile":405},"2025-12-27",0.82784,{"date":407,"score":53,"percentile":408},"2025-12-28",0.82734,{"date":410,"score":53,"percentile":396},"2025-12-29",{"date":412,"score":53,"percentile":413},"2025-12-30",0.82738,{"date":415,"score":53,"percentile":416},"2025-12-31",0.82751,{"date":418,"score":53,"percentile":419},"2026-01-01",0.82825,{"date":421,"score":53,"percentile":422},"2026-01-02",0.8282,{"date":424,"score":53,"percentile":425},"2026-01-03",0.82814,{"date":427,"score":53,"percentile":428},"2026-01-04",0.82731,{"date":430,"score":53,"percentile":431},"2026-01-05",0.82726,{"date":433,"score":53,"percentile":434},"2026-01-06",0.82732,{"date":436,"score":53,"percentile":298},"2026-01-07",{"date":438,"score":53,"percentile":413},"2026-01-08",{"date":440,"score":53,"percentile":441},"2026-01-09",0.82739,{"date":443,"score":53,"percentile":441},"2026-01-10",{"date":445,"score":53,"percentile":446},"2026-01-11",0.82736,{"date":448,"score":53,"percentile":298},"2026-01-12",{"date":450,"score":53,"percentile":451},"2026-01-13",0.82727,{"date":453,"score":53,"percentile":454},"2026-01-14",0.82746,{"date":456,"score":53,"percentile":457},"2026-01-15",0.82743,{"date":459,"score":53,"percentile":416},"2026-01-16",{"date":461,"score":53,"percentile":462},"2026-01-17",0.82753,{"date":464,"score":465,"percentile":352},"2026-01-18",0.01868,{"date":467,"score":465,"percentile":468},"2026-01-19",0.82631,{"date":470,"score":465,"percentile":471},"2026-01-20",0.82633,{"date":473,"score":465,"percentile":474},"2026-01-21",0.82638,{"date":476,"score":465,"percentile":477},"2026-01-22",0.82646,{"date":479,"score":53,"percentile":480},"2026-01-23",0.82782,{"date":482,"score":53,"percentile":483},"2026-01-24",0.82789,{"date":485,"score":53,"percentile":486},"2026-01-25",0.82783,{"date":488,"score":53,"percentile":480},"2026-01-26",{"date":490,"score":53,"percentile":491},"2026-01-27",0.82778,{"date":493,"score":53,"percentile":494},"2026-01-28",0.8278,{"date":496,"score":53,"percentile":480},"2026-01-29",{"date":498,"score":53,"percentile":499},"2026-01-30",0.82788,{"date":501,"score":53,"percentile":502},"2026-01-31",0.82794,{"date":504,"score":53,"percentile":505},"2026-02-01",0.82872,[507],{"source":57,"cvss_v2_0":508,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":55,"baseSeverity":9,"vectorString":58,"impactScore":509,"exploitabilityScore":510},2.9,8.6,[512,522,531,537],{"ecosystem":9,"name":513,"vendor":513,"product":513,"cpe_part":514,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":515},"gimp","a",[516],{"version":517,"is_range":518,"range_type":519,"version_start":9,"version_start_type":9,"version_end":520,"version_end_type":521,"fixed_in":9},"lt2.9.2",true,"cpe","2.9.2","excluding",{"ecosystem":9,"name":523,"vendor":524,"product":525,"cpe_part":514,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":526},"little cms","littlecms","little_cms",[527],{"version":528,"is_range":518,"range_type":519,"version_start":9,"version_start_type":9,"version_end":529,"version_end_type":530,"fixed_in":9},"lte1.17","1.17","including",{"ecosystem":9,"name":532,"vendor":533,"product":532,"cpe_part":514,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":534},"firefox","mozilla",[535],{"version":536,"is_range":28,"range_type":519,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"3.1:beta1",{"ecosystem":9,"name":538,"vendor":539,"product":538,"cpe_part":514,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":540},"openjdk","oracle",[541],{"version":542,"is_range":518,"range_type":519,"version_start":9,"version_start_type":9,"version_end":543,"version_end_type":530,"fixed_in":9},"lte7","7"]