CVE-2026-34555 iccDEV: SBO in CIccTagFixedNum::GetValues()

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, there is a stack-buffer-overflow SBO in CIccTagFixedNum::GetValues and a related bug chain. The primary crash is an AddressSanitizer-reported WRITE of size 4 that overflows a...

CVE-2026-34555

Technical specifics (affected products/versions/vector details) are not publicly provided in the supplied documents. The entry notes a stack-buffer-overflow in iccDEV CIccTagFixedNum::GetValues() prior to 2.3.1.6 and a patch in 2.3.1.6.