Skip to main content

Iccdev CVE-2026-34555

MEDIUM
Stack-based Buffer Overflow (CWE-121)
2026-03-31 security-advisories@github.com
6.2
CVSS 3.1 · GitHub Advisory
Share

Severity by source

GitHub Advisory PRIMARY
6.2 MEDIUM
AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Primary rating from GitHub Advisory · only source for this CVE.

CVSS VectorGitHub Advisory

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

2
Analysis Generated
Mar 31, 2026 - 23:22 vuln.today
CVE Published
Mar 31, 2026 - 23:17 nvd
MEDIUM 6.2

DescriptionGitHub Advisory

iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, there is a stack-buffer-overflow (SBO) in CIccTagFixedNum<>::GetValues() and a related bug chain. The primary crash is an AddressSanitizer-reported WRITE of size 4 that overflows a 4-byte stack variable (rv) via the call chain CIccTagFixedNum::GetValues() -> CIccTagStruct::GetElemNumberValue(). This issue has been patched in version 2.3.1.6.

AnalysisAI

Stack buffer overflow in iccDEV library versions prior to 2.3.1.6 allows local attackers to cause denial of service by crafting malicious ICC color management profile files that trigger a 4-byte write overflow in CIccTagFixedNum<>::GetValues(). The vulnerability requires local access and no user interaction, with CVSS 6.2 reflecting the high availability impact. No public exploit code or active exploitation has been identified; vendor-released patch version 2.3.1.6 is available.

Technical ContextAI

iccDEV is a C++ library providing standards-compliant tools for parsing and processing ICC color profiles, widely used in color management software stacks. The vulnerability exists in the CIccTagFixedNum template class's GetValues() method, which fails to perform adequate bounds checking when writing parsed numeric values into a 4-byte stack-allocated variable (rv) via the call chain involving CIccTagStruct::GetElemNumberValue(). This represents a classic stack buffer overflow (CWE-121: Stack-based Buffer Overflow) where untrusted input from a crafted ICC profile file can overwrite adjacent stack memory, potentially corrupting the call stack or local variables and leading to denial of service through application crash.

RemediationAI

Upgrade iccDEV to version 2.3.1.6 or later, which includes the patch resolving the stack buffer overflow in CIccTagFixedNum<>::GetValues(). Organizations should immediately apply this patch to all installations processing untrusted ICC profile files, particularly in server or service contexts. The fix is available via the official iccDEV repository at https://github.com/InternationalColorConsortium/iccDEV/pull/739 and subsequent released versions. No workaround is documented; patching is the primary remediation path. Verify successful upgrade by checking iccDEV version metadata and re-testing with previously problematic ICC profile files to confirm the crash no longer occurs.

More in Iccdev

View all
CVE-2026-21675 CRITICAL POC
9.8 Jan 06

iccDEV ICC color profile library (through 2.3.1) has a use-after-free in CIccXform::Create() when processing hint object

CVE-2026-24412 HIGH POC
8.8 Jan 24

Heap buffer overflow in iccDEV versions 2.3.1.1 and below allows remote code execution through maliciously crafted ICC c

CVE-2026-24406 HIGH POC
8.8 Jan 24

Heap buffer overflow in iccDEV versions 2.3.1.1 and below allows remote code execution when processing maliciously craft

CVE-2026-24405 HIGH POC
8.8 Jan 24

Heap buffer overflow in iccDEV versions 2.3.1.1 and earlier allows remote code execution through maliciously crafted ICC

CVE-2026-21688 HIGH POC
8.8 Jan 07

Type confusion in iccDEV library versions before 2.3.1.2 allows unauthenticated attackers to achieve remote code executi

CVE-2026-21677 HIGH POC
8.8 Jan 06

iccDEV color management library versions 2.3.1 and earlier contain undefined behavior in the CLUT initialization functio

CVE-2026-21485 HIGH POC
8.8 Jan 06

iccDEV ICC color profile libraries versions 2.3.1.1 and earlier suffer from undefined behavior and out-of-memory errors

CVE-2026-22047 HIGH POC
8.8 Jan 07

Heap buffer overflow in iccDEV versions before 2.3.1.2 allows remote code execution when processing malicious ICC color

CVE-2026-21693 HIGH POC
8.8 Jan 07

Type confusion in iccDEV versions before 2.3.1.2 allows attackers to corrupt memory and achieve high-impact outcomes inc

CVE-2026-21692 HIGH POC
8.8 Jan 07

Type confusion in iccDEV versions before 2.3.1.2 allows unauthenticated attackers to achieve remote code execution throu

CVE-2026-21682 HIGH POC
8.8 Jan 07

Heap buffer overflow in iccDEV versions before 2.3.1.2 allows remote code execution when processing malicious ICC color

CVE-2026-21679 HIGH POC
8.8 Jan 07

Heap buffer overflow in iccDEV versions prior to 2.3.1.2 allows remote attackers to execute arbitrary code through the C

Share

CVE-2026-34555 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy