CVE-2026-24406

iccDEV has Heap Buffer Overflow in CIccTagNamedColor2::SetSize()

CVSS 8.8 HIGHEPSS 0.5%CWE-122 CWE-20

In short

iccDEV's color profile library has a memory overflow flaw in its NamedColor2 tag handler. When processing specially crafted color profiles, attackers can crash the application, corrupt data, or potentially run malicious code.

Technical detail

A heap buffer overflow exists in CIccTagNamedColor2::SetSize() where unsanitized user input from ICC profile structures is written beyond allocated memory boundaries. The vulnerability allows remote exploitation via malicious ICC files, potentially enabling denial of service, data manipulation, logic bypass, and arbitrary code execution on affected versions ≤2.3.1.1.

Summary generated and translated by AI from the official description.

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have a Heap Buffer Overflow vulnerability in CIccTagNamedColor2::SetSize(). This occurs when user-controllable input is unsafely incorporated into ICC profile data or other structured binary blobs. Successful exploitation may allow an attacker to perform DoS, manipulate data, bypass application logic and Code Execution. This issue has been fixed in version 2.3.1.2.

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected products

InternationalColorConsortium · iccDEV

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/InternationalColorConsortium/iccDEV/commit/90c71cba2c563b1f5dc84197f827540d1baaea67 https://github.com/InternationalColorConsortium/iccDEV/issues/480 https://github.com/InternationalColorConsortium/iccDEV/security/advisories/GHSA-h9h3-45cm-j95f