Iccdev
CVE-2026-34542
MEDIUM
Severity by source
AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Primary rating from GitHub Advisory · only source for this CVE.
CVSS VectorGitHub Advisory
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Lifecycle Timeline
2DescriptionGitHub Advisory
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, a crafted ICC profile can trigger a stack-buffer-overflow (SBO) in CIccCalculatorFunc::Apply() when processed via iccApplyNamedCmm. Under AddressSanitizer, the failure is reported as a 4-byte write stack-buffer-overflow in IccProfLib/IccMpeCalc.cpp:3873, reachable through the MPE calculator / curve set initialization path. This issue has been patched in version 2.3.1.6.
AnalysisAI
Stack buffer overflow in iccDEV library versions prior to 2.3.1.6 allows local attackers to trigger a denial of service by crafting a malicious ICC color profile that overflows a 4-byte stack buffer in the CIccCalculatorFunc::Apply() function during profile processing. The vulnerability requires local access and no user interaction, with CVSS 6.2 reflecting high availability impact but no direct code execution path; vendor-released patch is available in version 2.3.1.6.
Technical ContextAI
iccDEV is a library suite for processing ICC (International Color Consortium) color management profiles, which are binary data structures used in digital imaging and color management workflows. The vulnerability exists in the MPE (Multi-Processing Element) calculator initialization path, specifically in IccProfLib/IccMpeCalc.cpp at line 3873, where the CIccCalculatorFunc::Apply() method fails to properly validate input bounds when processing curve set initialization data from a crafted ICC profile. This is classified as CWE-121 (Stack-based Buffer Overflow), a classic memory safety issue where untrusted profile data can write beyond allocated stack memory. The flaw is reachable when iccApplyNamedCmm processes a malformed profile containing specially crafted MPE calculator structures with oversized curve parameters.
RemediationAI
Vendor-released patch available: upgrade iccDEV to version 2.3.1.6 or later, which fixes the stack buffer overflow in CIccCalculatorFunc::Apply(). For applications and libraries depending on iccDEV, update the dependency to the patched version and rebuild. No workarounds are available for this memory safety issue short of avoiding processing of untrusted ICC profiles or disabling ICC profile support. See the official security advisory at https://github.com/InternationalColorConsortium/iccDEV/security/advisories/GHSA-6749-6859-wf96 and the upstream patch via pull request https://github.com/InternationalColorConsortium/iccDEV/pull/694 for implementation details.
iccDEV ICC color profile library (through 2.3.1) has a use-after-free in CIccXform::Create() when processing hint object
Heap buffer overflow in iccDEV versions 2.3.1.1 and below allows remote code execution through maliciously crafted ICC c
Heap buffer overflow in iccDEV versions 2.3.1.1 and below allows remote code execution when processing maliciously craft
Heap buffer overflow in iccDEV versions 2.3.1.1 and earlier allows remote code execution through maliciously crafted ICC
Type confusion in iccDEV library versions before 2.3.1.2 allows unauthenticated attackers to achieve remote code executi
iccDEV color management library versions 2.3.1 and earlier contain undefined behavior in the CLUT initialization functio
iccDEV ICC color profile libraries versions 2.3.1.1 and earlier suffer from undefined behavior and out-of-memory errors
Heap buffer overflow in iccDEV versions before 2.3.1.2 allows remote code execution when processing malicious ICC color
Type confusion in iccDEV versions before 2.3.1.2 allows attackers to corrupt memory and achieve high-impact outcomes inc
Type confusion in iccDEV versions before 2.3.1.2 allows unauthenticated attackers to achieve remote code execution throu
Heap buffer overflow in iccDEV versions before 2.3.1.2 allows remote code execution when processing malicious ICC color
Heap buffer overflow in iccDEV versions prior to 2.3.1.2 allows remote attackers to execute arbitrary code through the C
Same weakness CWE-121 – Stack-based Buffer Overflow
View allSame technique Stack Overflow
View allShare
External POC / Exploit Code
Leaving vuln.today