Security Advisory

CVE-2026-25583

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-04 22:08:52

Last updated 2026-02-05 15:09:54

Assigner GitHub_M

State PUBLISHED

Description

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.3, there is a heap buffer overflow vulnerability in CIccFileIO::Read8() when processing malformed ICC profile files via unchecked fread operation. This issue has been patched in version 2.3.1.3.

← Browse all CVEs View on cve.org ↗