iccDEV Stack Overflow Vulnerability in SIccCalcOp::ArgsUsed()
Vulnerability
A stack overflow vulnerability has been identified in iccDEV versions prior to 2.3.1.6. The issue arises in the SIccCalcOp::ArgsUsed() function, where a crafted ICC profile can cause a stack overflow. This vulnerability is triggered when the iccApplyProfiles function processes a malicious profile, leading to a crash during the argument usage computation. The vulnerability is observable under AddressSanitizer, which reports the stack overflow error. The issue has been patched in version 2.3.1.6.
Impact
Exploitation of this vulnerability causes a stack overflow, leading to a crash of the application. This behavior is recognized as a denial-of-service condition.
Reproduction
The vulnerability can be reproduced by using AddressSanitizer to compile iccDEV. Afterward, a malicious ICC profile can be applied to a TIFF file using the iccApplyProfiles function. The AddressSanitizer will report a stack overflow error, indicating that the vulnerability has been successfully exploited.
Remediation
Users can update to iccDEV version 2.3.1.6 or later to address this vulnerability.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.