Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

InternationalColorConsortium — Vulnerabilities & Security Advisories 104

Browse all 104 CVE security advisories affecting InternationalColorConsortium. AI-powered Chinese analysis, POCs, and references for each vulnerability.

The International Color Consortium develops open standards and software tools for color management, primarily facilitating accurate color reproduction across diverse devices and operating systems. Its ecosystem includes widely used libraries like Little CMS and ICC profiles, which are integral to graphic design, printing, and digital imaging workflows. Historically, vulnerabilities in these components have frequently involved buffer overflows and integer overflows, leading to remote code execution or denial-of-service conditions. While cross-site scripting and privilege escalation issues are less common in the core libraries, they occasionally appear in associated web-based management interfaces. The consortium maintains a proactive security posture by publishing detailed CVE records, currently totaling 104 entries, which reflect ongoing efforts to patch legacy code and secure data processing routines. These incidents underscore the critical need for rigorous input validation in color processing algorithms to prevent exploitation by malicious actors targeting high-value creative industries.

Top products by InternationalColorConsortium: iccDEV
CVE IDTitleCVSSSeverityPublished
CVE-2026-34556 iccDEV: HBO in icAnsiToUtf8() — iccDEVCWE-125 6.2 Medium2026-03-31
CVE-2026-34555 iccDEV: SBO in CIccTagFixedNum::GetValues() — iccDEVCWE-121 6.2 Medium2026-03-31
CVE-2026-34554 iccDEV: HBO in CIccApplyCmmSearch::costFunc() — iccDEVCWE-125 6.2 Medium2026-03-31
CVE-2026-34553 iccDEV: DoS in CIccCLUT::Iterate() & CIccMBB::Describe() — iccDEVCWE-562 4.0 Medium2026-03-31
CVE-2026-34552 iccDEV: UB at IccTagLut.cpp — iccDEVCWE-476 6.2 Medium2026-03-31
CVE-2026-34551 iccDEV: NPD in CIccTagLut16::Write() — iccDEVCWE-476 6.2 Medium2026-03-31
CVE-2026-34550 iccDEV: UB at IccIO.cpp — iccDEVCWE-681 6.2 Medium2026-03-31
CVE-2026-34549 iccDEV: UB at IccUtil.cpp — iccDEVCWE-758 6.2 Medium2026-03-31
CVE-2026-34548 iccDEV: UB at IccUtilXml.cpp — iccDEVCWE-681 6.2 Medium2026-03-31
CVE-2026-34547 iccDEV: UB at IccUtil.cpp — iccDEVCWE-758 6.2 Medium2026-03-31
CVE-2026-34546 iccDEV: UB at TiffImg.h — iccDEVCWE-369 6.2 Medium2026-03-31
CVE-2026-34542 iccDEV: SBO in CIccCalculatorFunc::Apply() — iccDEVCWE-121 6.2 Medium2026-03-31
CVE-2026-34541 iccDEV: UB in CIccCombinedConnectionConditions::CIccCombinedConnectionConditions() — iccDEVCWE-476 6.2 Medium2026-03-31
CVE-2026-34540 iccDEV: HBO in icMemDump() — iccDEVCWE-122 6.2 Medium2026-03-31
CVE-2026-34539 iccDEV: HBO in CTiffImg::WriteLine() — iccDEVCWE-122 6.2 Medium2026-03-31
CVE-2026-34537 iccDEV: UB in CIccOpDefEnvVar::Exec() — iccDEVCWE-758 6.2 Medium2026-03-31
CVE-2026-34536 iccDEV: SO in SIccCalcOp::ArgsUsed() — iccDEVCWE-674 6.2 Medium2026-03-31
CVE-2026-34535 iccDEV: SEGV in CIccTagArray::Cleanup() — iccDEVCWE-122 6.2 Medium2026-03-31
CVE-2026-34534 iccDEV: HBO in CIccMpeSpectralMatrix::Describe() — iccDEVCWE-122 6.2 Medium2026-03-31
CVE-2026-34533 iccDEV: UB in CIccCalculatorFunc::ApplySequence() — iccDEVCWE-758 6.2 Medium2026-03-31
CVE-2026-30980 iccDEV has a stack overflow in CIccBasicStructFactory::CreateStruct() — iccDEVCWE-121 5.5 Medium2026-03-10
CVE-2026-31797 iccDEV has a heap out-of-bounds read in CTiffImg::ReadLine() — iccDEVCWE-125 6.1 Medium2026-03-10
CVE-2026-31796 iccDEV has a heap-based buffer overflow in icCurvesFromXml() — iccDEVCWE-122 7.8 High2026-03-10
CVE-2026-31795 iccDEV has a stack buffer overflow write in CIccXform3DLut::Apply() — iccDEVCWE-120 7.8 High2026-03-10
CVE-2026-31794 iccDEV has a SEGV in CIccCLUT::Interp3d() — iccDEVCWE-125 5.5 Medium2026-03-10
CVE-2026-31793 iccDEV has a SEGV in CIccCalculatorFunc::ApplySequence() — iccDEVCWE-125 5.5 Medium2026-03-10
CVE-2026-31792 iccDEV has a null pointer dereference in CIccTagXmlStruct::ParseTag() — iccDEVCWE-476 7.8 High2026-03-10
CVE-2026-30987 iccDEV has a stack buffer overflow in CIccTagNum<(icTagTypeSignature)>::GetValues() — iccDEVCWE-120 7.8 High2026-03-10
CVE-2026-30986 iccDEV has a heap-based buffer overflow write in CIccCLUT::Interp3d() — iccDEVCWE-125 5.5 Medium2026-03-10
CVE-2026-30985 iccDEV has a heap-based buffer overflow write in CIccMatrixMath::SetRange() — iccDEVCWE-120 7.8 High2026-03-10

This page lists every published CVE security advisory associated with InternationalColorConsortium. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.