iccDEV Undefined Behavior Vulnerability in CIccTagLut16::Read()
Vulnerability
A vulnerability causing undefined behavior has been identified in the iccDEV library, specifically in the CIccTagLut16::Read() function. This issue affects versions of iccDEV prior to 2.3.1.2 and can lead to runtime errors when processing ICC color profiles. The vulnerability arises because the function improperly handles curve data, allowing for reference binding to a null pointer, which could create problems on certain CPU architectures.
Impact
Exploitation of this vulnerability can lead to undefined behavior, with potential runtime errors causing issues in profile validation and processing.
Reproduction
The vulnerability can be reproduced by using the 'iccDumpProfile' tool from the iccDEV library on a crafted ICC profile that triggers the null pointer dereference in the 'CIccTagLut16::Read()' function. This can be done by downloading the profile from the 'Commodity-Injection-Signatures' repository and using it with the 'iccDumpProfile' command.
Remediation
Users can upgrade to iccDEV version 2.3.1.2, which includes a patch for this vulnerability.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.