iccDEV Undefined Behavior Vulnerability in XML Conversion Tooling
Vulnerability
A vulnerability causing undefined behavior has been identified in iccDEV versions prior to 2.3.1.6. The issue arises in the XML conversion tool path 'iccToXml', where an implicit conversion from a negative signed integer to an unsigned 32-bit integer alters the value. This vulnerability can lead to crashes or unpredictable behavior, creating a denial-of-service condition. The issue has been patched in version 2.3.1.6.
Impact
Exploitation of this vulnerability can cause the process to crash or behave unpredictably, leading to a denial-of-service condition.
Reproduction
The vulnerability can be reproduced by downloading a specific TIFF file that contains a crafted ICC profile. After extracting the ICC profile using the 'iccTiffDump' tool, the 'iccToXml' command can be used to convert the profile to XML format. During this conversion, the undefined behavior occurs, as reported by the Undefined Behavior Sanitizer.
Remediation
Users can update to iccDEV version 2.3.1.6 or later. Instructions for updating via NPM, Homebrew, Docker, and NixOS are available in the GitHub advisory.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.