CVE-2026-27692

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2026-27692

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-27692.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2026-27692

Aliases

GHSA-3869-prw8-gjqr

Published

2026-02-25T14:40:22.740Z

Modified

2026-04-12T20:21:38.744538Z

Severity

7.1 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H CVSS Calculator

Summary

iccDEV has HBO in CIccTagTextDescription::Release()

Details

iccDEV provides a set of libraries and tools for working with ICC color management profiles. In versions up to and including 2.3.1.4, heap-buffer-overflow read occurs during CIccTagTextDescription::Release() when strlen() reads past a heap buffer while parsing ICC profile XML text description tags, causing a crash. Commit 29d088840b962a7cdd35993dfabc2cb35a049847 fixes the issue. No known workarounds are available.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/27xxx/CVE-2026-27692.json",
    "cna_assigner": "GitHub_M",
    "cwe_ids": [
        "CWE-125",
        "CWE-170",
        "CWE-787"
    ]
}

References

Affected packages

Git / github.com/internationalcolorconsortium/iccdev

Affected ranges

Type: GIT
Repo: https://github.com/internationalcolorconsortium/iccdev
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

29d088840b962a7cdd35993dfabc2cb35a049847

Affected versions

v2.*

v2.2.6

v2.3.1

v2.3.1.1

v2.3.1.2

v2.3.1.3

v2.3.1.4

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-27692.json"

vanir_signatures_modified

"2026-04-12T20:21:38Z"

vanir_signatures

[
    {
        "target": {
            "file": "IccProfLib/IccTagBasic.cpp"
        },
        "id": "CVE-2026-27692-a895c574",
        "source": "https://github.com/internationalcolorconsortium/iccdev/commit/29d088840b962a7cdd35993dfabc2cb35a049847",
        "signature_type": "Line",
        "deprecated": false,
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "86913730250778183184181698411207361463",
                "157827830395535195793933853457565147834",
                "246420076283357748384691267885886715776",
                "35915357383867062396998767128116270556",
                "132457638667244375284904915335545233419",
                "148988581106556358121837670365706274566",
                "313546694652836618565471386742395745681"
            ]
        },
        "signature_version": "v1"
    },
    {
        "target": {
            "file": "IccProfLib/IccTagBasic.cpp",
            "function": "CIccTagTextDescription::GetBuffer"
        },
        "id": "CVE-2026-27692-fec38814",
        "source": "https://github.com/internationalcolorconsortium/iccdev/commit/29d088840b962a7cdd35993dfabc2cb35a049847",
        "signature_type": "Function",
        "deprecated": false,
        "digest": {
            "length": 223.0,
            "function_hash": "158420873604993912036306051544258711187"
        },
        "signature_version": "v1"
    }
]