5 matches found
CVE-2026-34556 iccDEV: HBO in icAnsiToUtf8()
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, there is a heap-buffer-overflow HBO in icAnsiToUtf8 in the XML conversion path. The issue is triggered by a crafted ICC profile which causes icAnsiToUtf8std::string&, char const ...
CVE-2026-34536
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, a crafted ICC profile can trigger a stack overflow SO in SIccCalcOp::ArgsUsed. The issue is observable under AddressSanitizer as a stack-overflow when iccApplyProfiles processes ...
CVE-2026-34551 iccDEV: NPD in CIccTagLut16::Write()
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, a null-pointer dereference NPD in CIccTagLut16::Write can be triggered when processing a crafted ICC profile embedded in a TIFF and extracted during iccTiffDump. This issue has...
CVE-2026-34547
iccDEV contains an Undefined Behavior in IccUtil.cpp that can be triggered by a crafted ICC profile when running iccDumpProfile, affecting versions prior to 2.3.1.6. The issue has been patched in 2.3.1.6. Affected component/filename: IccUtil.cpp within iccDEV libraries/tools for ICC color managem...
CVE-2026-34535 iccDEV: SEGV in CIccTagArray::Cleanup()
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, a crafted ICC profile can trigger a segmentation fault SEGV in CIccTagArray::Cleanup. The issue is observable under UBSan/ASan as misaligned member access / misaligned pointer...