CVE-2026-21675
- EPSS 0.15%
- Veröffentlicht 06.01.2026 02:15:45
- Zuletzt bearbeitet 12.01.2026 21:00:31
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below contain a Use After Free vulnerability in the CIccXform::Create() function, where it deletes the hint. This issue is fixed in versio...
CVE-2026-21674
- EPSS 0.02%
- Veröffentlicht 06.01.2026 02:15:45
- Zuletzt bearbeitet 12.01.2026 21:02:37
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below contain a memory leak vulnerability in its XML MPE Parsing Path (iccFromXml). This issue is fixed in version 2.3.1.1.
CVE-2026-21673
- EPSS 0.02%
- Veröffentlicht 06.01.2026 02:15:45
- Zuletzt bearbeitet 12.01.2026 21:03:33
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below have overflows and underflows in CIccXmlArrayType::ParseTextCountNum(). This vulnerability affects users of the iccDEV library who ...
CVE-2026-21507
- EPSS 0.07%
- Veröffentlicht 06.01.2026 00:11:25
- Zuletzt bearbeitet 12.01.2026 21:04:26
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Versions 2.3.1 and below have an infinite loop in the IccProfile.cpp function, CalcProfileID. This issue is fixed in version 2.3.1.1.