CVE-2026-31792

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to 2.3.1.5, there is a null pointer dereference in CIccTagXmlStruct::ParseTag causing a segmentation fault or denial of service. This vulnerability is fixed in 2.3.1.5...

iccDEV 代码问题漏洞

iccDEV is an open-source color configuration code library developed by the International Color Consortium. Versions of iccDEV prior to 2.3.1.5 contained code-related vulnerabilities. These vulnerabilities stemmed from a null pointer dereferencing in the CIccTagXmlStruct::ParseTag function, which...

PT-2026-24357

Name of the Vulnerable Software and Affected Versions iccDEV versions prior to 2.3.1.5 Description iccDEV is a set of libraries and tools for working with ICC color management profiles. A null pointer dereference exists in the CIccTagXmlStruct::ParseTag function, which can lead to a segmentation...

CVE-2026-21674

CVE-2026-21674 affects iccDEV, where versions 2.3.1 and earlier contain a memory leak in the XML MPE Parsing Path (iccFromXml). The issue is fixed in version 2.3.1.1. Affected components: iccDEV libraries/tools for ICC color management profiles. Impact: memory leak vulnerability as described in m...

CVE-2026-21674 iccDEV has a Memory Leak in its CIccProfileXml::ParseTag() Error Path

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below contain a memory leak vulnerability in its XML MPE Parsing Path iccFromXml. This issue is fixed in version 2.3.1.1...

EUVD-2025-26584

Malicious code in bioql PyPI...

CVE-2025-22423

In ParseTag of dngifd.cpp, there is a possible way to crash the image renderer due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...