iccDEV Stack-Buffer Overflow Vulnerability in CIccTagFixedNum::GetValues()

A stack-buffer overflow vulnerability has been identified in iccDEV versions prior to 2.3.1.6. The issue occurs in the function CIccTagFixedNum<>::GetValues(), where a 4-byte stack variable is overwritten due to improper handling of data. This vulnerability can be exploited by crafting a specific ICC profile that, when processed by tools using this library, leads to a crash. The vulnerability has been addressed in version 2.3.1.6.

Impact

Exploitation of this vulnerability causes a stack-buffer overflow, which can lead to undefined behavior such as memory corruption or arbitrary code execution.

Reproduction

The vulnerability can be reproduced by using a crafted ICC file that exploits the buffer overflow in the CIccTagFixedNum::GetValues() function. This can be done by applying the 'iccApplyToLink' command with the crafted ICC file as an argument. The AddressSanitizer will report the stack-buffer overflow error, indicating that the vulnerability has been successfully exploited.

Remediation

Users can update to iccDEV version 2.3.1.6 or later, where this vulnerability has been patched.