9 matches found
CVE-2026-21680
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium ICC color management profiles. Versions prior to 2.3.1.2 have a NULL pointer dereference vulnerability. This vulnerability affects users of the iccDEV libra...
CVE-2026-21498
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.2, iccDEV is vulnerable to NULL pointer dereference via the XML calculator parser. This issue has been patched in version 2.3.1.2...
CVE-2026-21499
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.2, iccDEV is vulnerable to NULL pointer dereference via the XML parser. This issue has been patched in version 2.3.1.2...
CVE-2026-21678 iccDEV has heap-buffer-overflow vulnerability on IccTagXml()
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.2, iccDEV is vulnerable to heap-buffer-overflow vulnerability in IccTagXml. This issue has been patched in version 2.3.1.2...
CVE-2026-21506 iccDEV is Vulnerable to Null Pointer Dereference in CIccProfileXml::ParseBasic() Leading to Denial of Service
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.2, iccDEV is vulnerable to Null pointer dereference in CIccProfileXml::ParseBasic, leading to denial of service. This issue has been...
CVE-2026-21504 Heap Buffer Overflow in iccDEV ToneMap Parser
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.2, iccDEV is vulnerable to heap buffer overflow in the ToneMap parser. This issue has been patched in version 2.3.1.2...
CVE-2026-21497
CVE-2026-21497 affects iccDEV before version 2.3.1.2, where a NULL pointer dereference can occur via an unknown tag parser. Red Hat and other sources confirm the issue and state it has been patched in iccDEV 2.3.1.2. The vulnerability is described across multiple feeds (NVD, Red Hat, CVE records,...
CVE-2026-21495
The CVE-2026-21495 issue affects iccDEV prior to version 2.3.1.2, where the TIFF Image Reader contains a division-by-zero flaw. Multiple sources (NVD/Red Hat/CVE, PT Security) consistently describe: affected product iccDEV, vulnerable component TIFF Image Reader, root cause division by zero, and ...
CVE-2026-21492
CVE-2026-21492 affects the iccDEV library used for ICC color profile handling. Versions prior to 2.3.1.2 contain a NULL pointer member call vulnerability in the ToneMap Writer. The issue can trigger dereferencing of a null pointer when processing profiles. Version 2.3.1.2 includes a patch. No pub...