Lucene search
K

5 matches found

OSV
OSV
added 2026/03/31 10:22 p.m.4 views

CVE-2026-34556 iccDEV: HBO in icAnsiToUtf8()

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, there is a heap-buffer-overflow HBO in icAnsiToUtf8 in the XML conversion path. The issue is triggered by a crafted ICC profile which causes icAnsiToUtf8std::string&, char const ...

6.2CVSS6AI score0.00156EPSS
Exploits1References5
NVD
NVD
added 2026/03/31 10:16 p.m.4 views

CVE-2026-34536

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, a crafted ICC profile can trigger a stack overflow SO in SIccCalcOp::ArgsUsed. The issue is observable under AddressSanitizer as a stack-overflow when iccApplyProfiles processes ...

6.2CVSS0.00222EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/03/31 10:14 p.m.21 views

CVE-2026-34551 iccDEV: NPD in CIccTagLut16::Write()

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, a null-pointer dereference NPD in CIccTagLut16::Write can be triggered when processing a crafted ICC profile embedded in a TIFF and extracted during iccTiffDump. This issue has...

6.2CVSS0.00156EPSS
Exploits1References3
CVE
CVE
added 2026/03/31 10:8 p.m.8 views

CVE-2026-34547

iccDEV contains an Undefined Behavior in IccUtil.cpp that can be triggered by a crafted ICC profile when running iccDumpProfile, affecting versions prior to 2.3.1.6. The issue has been patched in 2.3.1.6. Affected component/filename: IccUtil.cpp within iccDEV libraries/tools for ICC color managem...

6.2CVSS5.7AI score0.00156EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2026/03/31 9:58 p.m.4 views

CVE-2026-34535 iccDEV: SEGV in CIccTagArray::Cleanup()

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, a crafted ICC profile can trigger a segmentation fault SEGV in CIccTagArray::Cleanup. The issue is observable under UBSan/ASan as misaligned member access / misaligned pointer...

6.2CVSS5.8AI score0.00156EPSS
Exploits1References5
Rows per page
Query Builder