Wind River Support Network

HomeDefectsLIN1023-19988
Acknowledged

LIN1023-19988 : Security Advisory - lcms - CVE-2026-41254

Created: Apr 20, 2026    Updated: Apr 29, 2026
Found In Version: 10.23.30.2
Severity: Standard
Applicable for: Wind River Linux LTS 23
Component/s: Userspace

Description

Little CMS (lcms2) through 2.18 has an integer overflow in CubeSize in cmslut.c because the overflow check is performed after the multiplication.
  • Linkedin
  • Facebook
  • Twitter
  • Youtube