SUSE SLED15 / SLES15 / openSUSE 15 Security Update : mozjs60 (SUSE-SU-2026:0044-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0044-1 advisory. - CVE-2024-45492: embedded expat: detect integer overflow in function nextScaffoldPart bsc123003...

CVE-2026-22046

CVE-2026-22046 affects iccDEV prior to 2.3.1.2. A heap-buffer-overflow occurs in CIccProfileXml::ParseBasic() within IccXML/IccLibXML/IccProfileXml.cpp when processing ICC color profiles. The vulnerability is addressed by upgrading to version 2.3.1.2, which contains a patch. No publicly documente...

CVE-2026-21689 iccDEV has Type Confusion in CIccProfileXml::ParseBasic() at IccXML/IccLibXML/IccProfileXml.cpp

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium ICC color management profiles. Versions prior to 2.3.1.2 have a Type Confusion vulnerability in CIccProfileXml::ParseBasic at...

CVE-2026-21689 iccDEV has Type Confusion in CIccProfileXml::ParseBasic() at IccXML/IccLibXML/IccProfileXml.cpp

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium ICC color management profiles. Versions prior to 2.3.1.2 have a Type Confusion vulnerability in CIccProfileXml::ParseBasic at...

CVE-2026-21689 iccDEV has Type Confusion in CIccProfileXml::ParseBasic() at IccXML/IccLibXML/IccProfileXml.cpp

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium ICC color management profiles. Versions prior to 2.3.1.2 have a Type Confusion vulnerability in CIccProfileXml::ParseBasic at...

EUVD-2026-1397

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium ICC color management profiles. Versions prior to 2.3.1.2 have a heap-buffer-overflow in CIccXmlArrayType::ParseText. This vulnerability affects users of the...

CVE-2026-21682 iccDEV has heap-buffer-overflow in CIccXmlArrayType::ParseText()

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium ICC color management profiles. Versions prior to 2.3.1.2 have a heap-buffer-overflow in CIccXmlArrayType::ParseText. This vulnerability affects users of the...

CVE-2026-21682 iccDEV has heap-buffer-overflow in CIccXmlArrayType::ParseText()

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium ICC color management profiles. Versions prior to 2.3.1.2 have a heap-buffer-overflow in CIccXmlArrayType::ParseText. This vulnerability affects users of the...

CVE-2026-21682 iccDEV has heap-buffer-overflow in CIccXmlArrayType::ParseText()

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium ICC color management profiles. Versions prior to 2.3.1.2 have a heap-buffer-overflow in CIccXmlArrayType::ParseText. This vulnerability affects users of the...

CVE-2026-21682

ICCDEV versions prior to 2.3.1.2 contain a heap-buffer-overflow in CIccXmlArrayType::ParseText(). The vulnerability affects users processing ICC color profiles. Version 2.3.1.2 includes a patch; no workarounds are documented. Practical impact and exploit details are not provided in the connected ...

CVE-2026-21506

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.2, iccDEV is vulnerable to Null pointer dereference in CIccProfileXml::ParseBasic, leading to denial of service. This issue has been...

CVE-2026-21506 iccDEV is Vulnerable to Null Pointer Dereference in CIccProfileXml::ParseBasic() Leading to Denial of Service

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.2, iccDEV is vulnerable to Null pointer dereference in CIccProfileXml::ParseBasic, leading to denial of service. This issue has been...

CVE-2026-21506

CVE-2026-21506 (iccDEV) concerns a null pointer dereference in CIccProfileXml::ParseBasic() affecting iccDEV versions prior to 2.3.1.2, leading toDenial of Service. The issue is confirmed across multiple sources (Red Hat advisory, NVD entry, CVE records) and is documented as a vulnerability in th...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000196)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000196 advisory. A memory leak in the predicateparse function in kernel/trace/traceeventsfilter.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service...

iccDEV 代码问题漏洞

iccDEV is an open source color configuration code library from International Color Consortium. A code issue vulnerability exists in iccDEV versions prior to 2.3.1.2, which stems from a null pointer dereference in CIccProfileXml::ParseBasic, which could result in a denial of service...

iccDEV 安全漏洞

iccDEV is an open source color configuration code library from the International Color Consortium. A security vulnerability exists in iccDEV versions prior to 2.3.1.2, which stems from a heap buffer overflow in the CIccXmlArrayType::ParseText function...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000286)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000286 advisory. In uvcparsestandardcontrol of uvcdriver.c, there is a possible out-of-bound read due to improper input validation. This could lead to local information disclosure wi...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000509)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000509 advisory. An issue was discovered in the Linux kernel through 5.6.2. mpolparsestr in mm/mempolicy.c has a stack- based out-of-bounds write because an empty nodelist is...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000460)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000460 advisory. An issue was discovered in dlparparseccproperty in arch/powerpc/platforms/pseries/dlpar.c in the Linux kernel through 5.1.6. There is an unchecked kstrdup of...

PT-2026-2079

Name of the Vulnerable Software and Affected Versions iccDEV versions prior to 2.3.1.2 Description iccDEV is a set of libraries and tools for interacting with International Color Consortium ICC color management profiles. A heap-buffer-overflow exists in the CIccXmlArrayType::ParseText function fo...