Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.5
iccDEV ICC Color Management Tool Crashes System
CVE-2026-31793
Summary
A bug in the iccDEV tool set causes it to crash if it encounters malformed ICC color profiles. This can disrupt normal operation and require a restart. Update to version 2.3.1.5 or later to fix the issue.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| color | iccdev | <= 2.3.1.5 | – |
Original title
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to 2.3.1.5, there is a segmentation fault due to invalid/wild pointer read in CIccCalculatorFunc::...
Original description
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to 2.3.1.5, there is a segmentation fault due to invalid/wild pointer read in CIccCalculatorFunc::ApplySequence() causing denial of service. This vulnerability is fixed in 2.3.1.5.
nvd CVSS3.1
5.5
Vulnerability type
CWE-125
Out-of-bounds Read
CWE-703
Published: 10 Mar 2026 · Updated: 13 Mar 2026 · First seen: 11 Mar 2026