Iccdev
CVE-2026-34547
MEDIUM
Severity by source
AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Primary rating from GitHub Advisory · only source for this CVE.
CVSS VectorGitHub Advisory
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Lifecycle Timeline
2DescriptionGitHub Advisory
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, an Undefined Behavior (UB) condition in IccUtil.cpp can be triggered by a crafted ICC profile when running iccDumpProfile. This issue has been patched in version 2.3.1.6.
AnalysisAI
Denial of service via undefined behavior in iccDEV versions prior to 2.3.1.6 allows local attackers to crash the iccDumpProfile tool by supplying a crafted ICC color profile. The vulnerability exploits an unsafe memory operation in IccUtil.cpp triggered during profile parsing, resulting in application termination with no authentication required. No public exploit code or active exploitation has been reported at time of analysis.
Technical ContextAI
iccDEV is a library and toolkit for manipulating International Color Consortium (ICC) color management profiles, which are binary files containing color space transformation data. The vulnerability resides in IccUtil.cpp, a utility component responsible for parsing and validating ICC profile structures. The root cause is classified as CWE-758 (Undefined Behavior), which encompasses unsafe operations such as out-of-bounds memory access, use-after-free, or integer overflows that occur during the profile deserialization process. A crafted ICC profile with malformed data structures can trigger this undefined behavior when processed by iccDumpProfile, a command-line utility for inspecting profile contents. The local attack vector and lack of privilege requirements indicate the vulnerability can be exploited by any user with the ability to supply input files to the tool, such as through a shared filesystem or automated profile processing pipeline.
RemediationAI
Upgrade iccDEV to version 2.3.1.6 or later, which contains the fix for the undefined behavior in IccUtil.cpp. The patch is available via the GitHub repository at https://github.com/InternationalColorConsortium/iccDEV, with the fix implemented in pull request #724. For organizations unable to immediately upgrade, restrict access to the iccDumpProfile utility to trusted users only and validate ICC profile sources before processing. Detailed remediation guidance is available in the GitHub advisory at https://github.com/InternationalColorConsortium/iccDEV/security/advisories/GHSA-v8h6-8hxj-j7ff and the associated issue discussion at https://github.com/InternationalColorConsortium/iccDEV/issues/720.
iccDEV ICC color profile library (through 2.3.1) has a use-after-free in CIccXform::Create() when processing hint object
Heap buffer overflow in iccDEV versions 2.3.1.1 and below allows remote code execution through maliciously crafted ICC c
Heap buffer overflow in iccDEV versions 2.3.1.1 and below allows remote code execution when processing maliciously craft
Heap buffer overflow in iccDEV versions 2.3.1.1 and earlier allows remote code execution through maliciously crafted ICC
Type confusion in iccDEV library versions before 2.3.1.2 allows unauthenticated attackers to achieve remote code executi
iccDEV color management library versions 2.3.1 and earlier contain undefined behavior in the CLUT initialization functio
iccDEV ICC color profile libraries versions 2.3.1.1 and earlier suffer from undefined behavior and out-of-memory errors
Heap buffer overflow in iccDEV versions before 2.3.1.2 allows remote code execution when processing malicious ICC color
Type confusion in iccDEV versions before 2.3.1.2 allows attackers to corrupt memory and achieve high-impact outcomes inc
Type confusion in iccDEV versions before 2.3.1.2 allows unauthenticated attackers to achieve remote code execution throu
Heap buffer overflow in iccDEV versions before 2.3.1.2 allows remote code execution when processing malicious ICC color
Heap buffer overflow in iccDEV versions prior to 2.3.1.2 allows remote attackers to execute arbitrary code through the C
Same technique Information Disclosure
View allShare
External POC / Exploit Code
Leaving vuln.today