Wind River Support Network

HomeDefectsLIN1022-22530
Acknowledged

LIN1022-22530 : Security Advisory - lcms - CVE-2026-41254

Created: Apr 20, 2026    Updated: Apr 28, 2026
Found In Version: 10.22.33.2
Severity: Standard
Applicable for: Wind River Linux LTS 22
Component/s: Userspace

Description

Little CMS (lcms2) through 2.18 has an integer overflow in CubeSize in cmslut.c because the overflow check is performed after the multiplication.
  • Linkedin
  • Facebook
  • Twitter
  • Youtube