CVE-2025-29069

A heap buffer overflow vulnerability has been identified in the lcms2-2.16. The vulnerability exists in the UnrollChunkyBytes function in cmspack.c, which is responsible for handling color space transformations. NOTE: this is disputed by the Supplier because the finding identified a bug in a...

CVE-2025-29069

CVE-2025-29069 : A heap buffer overflow vulnerability is described in Little CMS (lcms2) version 2.16, located in the UnrollChunkyBytes function of cmspack.c which handles color space transformations. The supplier disputes the finding, stating the bug is in a third‑party calling program, not in l...

CVE-2025-29069

A heap buffer overflow vulnerability has been identified in the lcms2-2.16. The vulnerability exists in the UnrollChunkyBytes function in cmspack.c, which is responsible for handling color space transformations. NOTE: this is disputed by the Supplier because the finding identified a bug in a...

OSV-2024-655 Stack-buffer-overflow in UnrollChunkyBytes

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=70395 Crash type: Stack-buffer-overflow READ 1 Crash state: UnrollChunkyBytes CachedXFORM cmsDoTransform...

PT-2024-40815 · Git +1 · Lcms

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a stack-buffer-overflow read, which was identified through an OSS-Fuzz report. The crash state involves several functions,...