397 matches found
CVE-2026-21677 iccDEV has Undefined Behavior in CIccCLUT::Init()
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below have Undefined Behavior in its CIccCLUT::Init function which initializes and sets the size of a CLUT. This issue is fixed in version 2.3.1.1...
CVE-2026-21677
CVE-2026-21677 affects iccDEV. Versions prior to 2.3.1 have Undefined Behavior in CIccCLUT::Init that initializes and sets the size of a CLUT; this is fixed in version 2.3.1.1. Red Hat and NVD entries describe the issue consistently. The CVSS base score is 8.8 (HIGH) with network attack vector, n...
CVE-2026-21676 iccDEV has a Heap-based Buffer Overflow in its CIccMBB::Validate() function
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below have a Heap-based Buffer Overflow in its CIccMBB::Validate function which checks tag data validity. This issue is fixed in version 2.3.1.1...
CVE-2026-21676 iccDEV has a Heap-based Buffer Overflow in its CIccMBB::Validate() function
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below have a Heap-based Buffer Overflow in its CIccMBB::Validate function which checks tag data validity. This issue is fixed in version 2.3.1.1...
CVE-2026-21676
ICCDev iccDEV contains a Heap-based Buffer Overflow in CIccMBB::Validate that affects versions 2.3.1 and earlier. The issue is fixed in version 2.3.1.1. This CVE-2026-21676 entry is supported by Red Hat and NVD descriptions, identifying the vulnerable component and the fixed version. Remediation:...
CVE-2026-21676 iccDEV has a Heap-based Buffer Overflow in its CIccMBB::Validate() function
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below have a Heap-based Buffer Overflow in its CIccMBB::Validate function which checks tag data validity. This issue is fixed in version 2.3.1.1...
CVE-2026-21673
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below have overflows and underflows in CIccXmlArrayType::ParseTextCountNum. This vulnerability affects users of the iccDEV library who process ICC color profiles. This issue is fixed in...
CVE-2026-21674
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below contain a memory leak vulnerability in its XML MPE Parsing Path iccFromXml. This issue is fixed in version 2.3.1.1...
CVE-2026-21675 iccDEV has a Use After Free vulnerability in CIccCmm class via improper hint manager object deletion
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below contain a Use After Free vulnerability in the CIccXform::Create function, where it deletes the hint. This issue is fixed in version 2.3.1.1...
CVE-2026-21675 iccDEV has a Use After Free vulnerability in CIccCmm class via improper hint manager object deletion
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below contain a Use After Free vulnerability in the CIccXform::Create function, where it deletes the hint. This issue is fixed in version 2.3.1.1...
CVE-2026-21675 iccDEV has a Use After Free vulnerability in CIccCmm class via improper hint manager object deletion
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below contain a Use After Free vulnerability in the CIccXform::Create function, where it deletes the hint. This issue is fixed in version 2.3.1.1...
CVE-2026-21674 iccDEV has a Memory Leak in its CIccProfileXml::ParseTag() Error Path
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below contain a memory leak vulnerability in its XML MPE Parsing Path iccFromXml. This issue is fixed in version 2.3.1.1...
CVE-2026-21674 iccDEV has a Memory Leak in its CIccProfileXml::ParseTag() Error Path
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below contain a memory leak vulnerability in its XML MPE Parsing Path iccFromXml. This issue is fixed in version 2.3.1.1...
CVE-2026-21674
CVE-2026-21674 affects iccDEV, where versions 2.3.1 and earlier contain a memory leak in the XML MPE Parsing Path (iccFromXml). The issue is fixed in version 2.3.1.1. Affected components: iccDEV libraries/tools for ICC color management profiles. Impact: memory leak vulnerability as described in m...
CVE-2026-21674 iccDEV has a Memory Leak in its CIccProfileXml::ParseTag() Error Path
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below contain a memory leak vulnerability in its XML MPE Parsing Path iccFromXml. This issue is fixed in version 2.3.1.1...
CVE-2026-21673 iccDEV has Integer Overflow/Underflow in CIccXmlArrayType::ParseTextCountNum()
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below have overflows and underflows in CIccXmlArrayType::ParseTextCountNum. This vulnerability affects users of the iccDEV library who process ICC color profiles. This issue is fixed in...
CVE-2026-21673
CVE-2026-21673 affects iccDEV: versions 2.3.1 and below contain overflows/underflows in CIccXmlArrayType::ParseTextCountNum(). The issue impacts users who process ICC color profiles. The vulnerability is fixed in version 2.3.1.1. Provided references indicate this is a binary/integer handling flaw...
EUVD-2026-1148
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below have overflows and underflows in CIccXmlArrayType::ParseTextCountNum. This vulnerability affects users of the iccDEV library who process ICC color profiles. This issue is fixed in...
CVE-2026-21673 iccDEV has Integer Overflow/Underflow in CIccXmlArrayType::ParseTextCountNum()
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below have overflows and underflows in CIccXmlArrayType::ParseTextCountNum. This vulnerability affects users of the iccDEV library who process ICC color profiles. This issue is fixed in...
CVE-2026-21673 iccDEV has Integer Overflow/Underflow in CIccXmlArrayType::ParseTextCountNum()
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below have overflows and underflows in CIccXmlArrayType::ParseTextCountNum. This vulnerability affects users of the iccDEV library who process ICC color profiles. This issue is fixed in...