Описание
iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.3, there is a heap buffer overflow vulnerability in CIccFileIO::Read8() when processing malformed ICC profile files via unchecked fread operation. This issue has been patched in version 2.3.1.3.
Ссылки
EPSS
Процентиль: 1%
0.00012
Низкий
7.8 High
CVSS3
Дефекты
CWE-119
EPSS
Процентиль: 1%
0.00012
Низкий
7.8 High
CVSS3
Дефекты
CWE-119