Primary

Context

iccDEV Type Confusion Vulnerability in Color Profile Processing

Vulnerability

A type confusion vulnerability has been identified in the iccDEV library, specifically in versions prior to 2.3.1.2. The issue arises in the 'SIccCalcOp::ArgsPushed()' function within 'IccProfLib/IccMpeCalc.cpp'. This vulnerability affects users who process International Color Consortium (ICC) color profiles, potentially leading to undefined behavior such as signed integer overflow.

Impact

Exploitation of this vulnerability causes a type confusion error, which can lead to undefined behavior in the application, including the possibility of memory corruption.

Reproduction

The vulnerability can be reproduced by using the 'iccFromXml' command with a crafted XML file that triggers the type confusion in the 'SIccCalcOp::ArgsPushed()' function. This can be done by manipulating the input to exceed the expected argument sizes, causing a signed integer overflow.

Remediation

Users can upgrade to iccDEV version 2.3.1.2 or later, where this vulnerability has been patched.

Added: Jan 7, 2026, 10:24 PM

Updated: Jan 7, 2026, 10:24 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.7

remediation

7.7

relevance

1.9

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.7

remediation

7.7

relevance

1.9

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

iccDEV Type Confusion Vulnerability in Color Profile Processing

Vulnerability

Impact

Reproduction

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating