CVE-2026-31795 iccDEV has a stack buffer overflow write in CIccXform3DLut::Apply()

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to 2.3.1.5, there is a stack buffer overflow write in CIccXform3DLut::Apply corrupting stack memory or crash. This vulnerability is fixed in 2.3.1.5...

CVE-2026-31795

CVE-2026-31795 affects iccDEV libraries prior to version 2.3.1.5. The vulnerability is a stack buffer overflow write in CIccXform3DLut::Apply(), which can corrupt stack memory and cause a crash. According to the description, the issue is fixed in 2.3.1.5. The CVSS metrics indicate a high-impact, ...

CVE-2026-25585

iccDEV before version 2.3.1.3 contains a vulnerability in the color management module due to improper array bounds validation at IccCmm.cpp:5793 during ICC profile processing, leading to out-of-bounds reads with potential memory disclosure or segmentation faults. The issue has been patched in ver...

CVE-2026-25585 iccDEV vulnerable to OOB in CIccXform3DLut::Apply()

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.3, there is a vulnerability IccCmm.cpp:5793 when reading through index during ICC profile processing. The malformed ICC profile...

CVE-2026-25585 iccDEV vulnerable to OOB in CIccXform3DLut::Apply()

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.3, there is a vulnerability IccCmm.cpp:5793 when reading through index during ICC profile processing. The malformed ICC profile...