Description
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, a crafted ICC profile and TIFF input can trigger a heap-buffer-overflow (HBO) in CTiffImg::WriteLine(). The issue is observable under AddressSanitizer as an out-of-bounds heap read when running iccSpecSepToTiff on a malicious .icc + .tif pair, leading to a crash during TIFF strip writing. This issue has been patched in version 2.3.1.6.
Published: 2026-03-31
Score: 6.2 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Denial of Service (crash)
Action: Patch Immediately
AI Analysis

Impact

A heap‑buffer‑overflow in CTiffImg::WriteLine() can be triggered by a crafted ICC profile and TIFF file, resulting in an out‑of‑bounds heap read and a crash during strip writing. The crash disables the affected component but does not directly allow arbitrary code execution or data disclosure.

Affected Systems

The issue affects the International Color Consortium’s iccDEV library and tools, specifically all releases prior to version 2.3.1.6. The vulnerability is tied to the iccSpecSepToTiff routine that processes ICC and TIFF input.

Risk and Exploitability

The CVSS score of 6.2 indicates moderate severity. No EPSS data is available, and the vulnerability is not listed in CISA’s KEV catalog, suggesting it is not widely exploited but remains a risk. The likely attack vector is local or within an environment where malicious ICC/TIFF files can be supplied to iccDEV; it does not appear to enable remote execution or data compromise.

Generated by OpenCVE AI on April 1, 2026 at 06:00 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade iccDEV to version 2.3.1.6 or later.

Generated by OpenCVE AI on April 1, 2026 at 06:00 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 02 Apr 2026 20:30:00 +0000

Type Values Removed Values Added
First Time appeared Internationalcolorconsortium
Internationalcolorconsortium iccdev
Vendors & Products Internationalcolorconsortium
Internationalcolorconsortium iccdev

Wed, 01 Apr 2026 02:15:00 +0000

Type Values Removed Values Added
Description iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, a crafted ICC profile and TIFF input can trigger a heap-buffer-overflow (HBO) in CTiffImg::WriteLine(). The issue is observable under AddressSanitizer as an out-of-bounds heap read when running iccSpecSepToTiff on a malicious .icc + .tif pair, leading to a crash during TIFF strip writing. This issue has been patched in version 2.3.1.6.
Title iccDEV: HBO in CTiffImg::WriteLine()
Weaknesses CWE-122
References
Metrics cvssV3_1

{'score': 6.2, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}

Subscriptions

Internationalcolorconsortium Iccdev
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-04-01T15:52:45.775Z

Reserved: 2026-03-30T16:31:39.263Z

Link: CVE-2026-34539

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Undergoing Analysis

Published: 2026-03-31T22:16:21.447

Modified: 2026-04-01T14:23:37.727

Link: CVE-2026-34539

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-02T20:10:15Z

Weaknesses