Debian 12 — lcms2 — multiple vulnerabilities (7 CVEs) — patch and remediation guide
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read • Source: Debian Security Tracker Related CVEs: CVE-2013-4160 CVE-2013-7455 CVE-2014-0459 CVE-2016-10165 CVE-2018-16435 CVE-2025-29070 CVE-2026-41254 Upstream summary: Little CMS (lcms2) before 2.5, as used in OpenJDK 7 and possibly other products, allows remote attackers to cause […]