Description
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, a crafted ICC profile can trigger a heap-buffer-overflow (HBO) in CIccMpeSpectralMatrix::Describe(). The issue is observable under AddressSanitizer as an out-of-bounds heap read when running iccDumpProfile on a malicious profile. This issue has been patched in version 2.3.1.6.
Published: 2026-03-31
Score: 6.2 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Heap buffer overflow in ICC profile handling
Action: Apply Patch
AI Analysis

Impact

A crafted ICC profile can trigger a heap‑buffer‑overflow (HBO) when the CIccMpeSpectralMatrix::Describe() routine is invoked. The overflow manifests as an out‑of‑bounds heap read that can be detected with AddressSanitizer. The vulnerability is limited to the memory handling of the profile data and does not directly lead to code execution, but it can corrupt program state or lead to denial of service if an attacker controls the profile. The weakness is identified as an improper handling of untrusted input (CWE‑122).

Affected Systems

The vulnerability affects the InternationalColorConsortium iccDEV libraries and tools. Any deployment of iccDEV prior to version 2.3.1.6 is susceptible. The issue was fixed in release 2.3.1.6, so systems running newer versions are not impacted.

Risk and Exploitability

The CVSS score is 6.2, indicating moderate severity. The EPSS score is not available, and the vulnerability is not listed in the CISA KEV catalog. There is no publicly known exploit, but the lack of an EPSS score and absence from KEV suggest current risk is uncertain. Attackers would need to supply a malicious ICC profile to the iccDumpProfile tool or any application that processes ICC profiles via the vulnerable routine. Because the overflow is an out‑of‑bounds read, exploitation would require additional control logic to cause a denial of service or memory corruption.

Generated by OpenCVE AI on April 1, 2026 at 06:01 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update iccDEV to version 2.3.1.6 or later

Generated by OpenCVE AI on April 1, 2026 at 06:01 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 02 Apr 2026 20:30:00 +0000

Type Values Removed Values Added
First Time appeared Internationalcolorconsortium
Internationalcolorconsortium iccdev
Vendors & Products Internationalcolorconsortium
Internationalcolorconsortium iccdev

Wed, 01 Apr 2026 02:15:00 +0000

Type Values Removed Values Added
Description iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, a crafted ICC profile can trigger a heap-buffer-overflow (HBO) in CIccMpeSpectralMatrix::Describe(). The issue is observable under AddressSanitizer as an out-of-bounds heap read when running iccDumpProfile on a malicious profile. This issue has been patched in version 2.3.1.6.
Title iccDEV: HBO in CIccMpeSpectralMatrix::Describe()
Weaknesses CWE-122
References
Metrics cvssV3_1

{'score': 6.2, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}

Subscriptions

Internationalcolorconsortium Iccdev
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-04-01T15:52:51.235Z

Reserved: 2026-03-30T16:03:31.048Z

Link: CVE-2026-34534

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Undergoing Analysis

Published: 2026-03-31T22:16:20.803

Modified: 2026-04-01T14:23:37.727

Link: CVE-2026-34534

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-02T20:10:19Z

Weaknesses