9 matches found
CVE-2026-21504
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.2, iccDEV is vulnerable to heap buffer overflow in the ToneMap parser. This issue has been patched in version 2.3.1.2...
CVE-2026-21504
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.2, iccDEV is vulnerable to heap buffer overflow in the ToneMap parser. This issue has been patched in version 2.3.1.2...
CVE-2026-21504 Heap Buffer Overflow in iccDEV ToneMap Parser
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.2, iccDEV is vulnerable to heap buffer overflow in the ToneMap parser. This issue has been patched in version 2.3.1.2...
CVE-2026-21504
CVE-2026-21504 affects iccDEV before 2.3.1.2, where the ToneMap parser contains a heap buffer overflow vulnerability. Multiple sources (NVD, Red Hat, CVE lists, OSV) confirm the issue and indicate it has been patched in 2.3.1.2. Affected software: iccDEV libraries/tools for ICC color management p...
CVE-2026-21504 Heap Buffer Overflow in iccDEV ToneMap Parser
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.2, iccDEV is vulnerable to heap buffer overflow in the ToneMap parser. This issue has been patched in version 2.3.1.2...
iccDEV 缓冲区错误漏洞
iccDEV is a color configuration codebase open-sourced by the International Color Consortium ICC. A buffer error vulnerability exists in versions prior to iccDEV 2.3.1.2, which stems from a heap buffer overflow in the ToneMap parser...
PT-2026-2070
Name of the Vulnerable Software and Affected Versions iccDEV versions prior to 2.3.1.2 Description iccDEV is a set of libraries and tools used for interacting with, manipulating, and applying ICC color management profiles. A heap buffer overflow exists in the ToneMap parser in versions prior to...
CVE-2026-21492
CVE-2026-21492 affects the iccDEV library used for ICC color profile handling. Versions prior to 2.3.1.2 contain a NULL pointer member call vulnerability in the ToneMap Writer. The issue can trigger dereferencing of a null pointer when processing profiles. Version 2.3.1.2 includes a patch. No pub...
CVE-2026-21492 iccDEV ToneMap Writer has NULL Pointer Member Call
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of International Color Consortium ICC color management profiles. Versions prior to 2.3.1.2 have a NULL pointer member call vulnerability. This vulnerability affects users of the iccDEV libra...