CVE-2026-31794

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to 2.3.1.5, there is a segmentation fault from invalid/wild pointer read in CIccCLUT::Interp3d causing a denial of service. This vulnerability is fixed in 2.3.1.5...

CVE-2026-31794

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to 2.3.1.5, there is a segmentation fault from invalid/wild pointer read in CIccCLUT::Interp3d causing a denial of service. This vulnerability is fixed in 2.3.1.5...

CVE-2026-31794 iccDEV has a SEGV in CIccCLUT::Interp3d()

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to 2.3.1.5, there is a segmentation fault from invalid/wild pointer read in CIccCLUT::Interp3d causing a denial of service. This vulnerability is fixed in 2.3.1.5...

CVE-2026-31794

CVE-2026-31794 (iccDEV) affects iccDEV prior to version 2.3.1.5. The vulnerability is a segmentation fault caused by an invalid/wild pointer read in CIccCLUT::Interp3d(), resulting in denial of service. The issue is fixed in 2.3.1.5. Remediation: upgrade to iccDEV 2.3.1.5 or later. References ind...

CVE-2026-31794 iccDEV has a SEGV in CIccCLUT::Interp3d()

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to 2.3.1.5, there is a segmentation fault from invalid/wild pointer read in CIccCLUT::Interp3d causing a denial of service. This vulnerability is fixed in 2.3.1.5...

CVE-2026-30986 iccDEV has a heap-based buffer overflow write in CIccCLUT::Interp3d()

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to 2.3.1.5, there is a heap-based buffer overflow write in CIccMatrixMath::SetRange causing memory corruption or crash. This vulnerability is fixed in 2.3.1.5...

CVE-2026-30986

CVE-2026-30986 affects iccDEV prior to 2.3.1.5, with a heap-based buffer overflow write in CIccMatrixMath::SetRange() leading to memory corruption or crash. The issue is resolved in version 2.3.1.5. The CVSS vector indicates local attack via low complexity with user interaction required, resultin...

iccDEV 安全漏洞

iccDEV is an open-source color configuration code library developed by the International Color Consortium. Versions of iccDEV prior to 2.3.1.5 contained security vulnerabilities. These vulnerabilities were caused by invalid or wild pointer reads in the CIccCLUT::Interp3d function, which could lea...

PT-2023-30250 · International Color Consortium · International Color Consortium Demoiccmax

Name of the Vulnerable Software and Affected Versions: International Color Consortium DemoIccMAX version 79ecb74 libIccProfLib2 version 2.1.15 Description: The issue arises from the CIccCLUT::Interp3d method in IccProfLib/IccTagLut.cpp, which attempts to access array elements at out-of-bounds...

CVE-2023-46866

In International Color Consortium DemoIccMAX 79ecb74, CIccCLUT::Interp3d in IccProfLib/IccTagLut.cpp in libSampleICC.a attempts to access array elements at out-of-bounds indexes...