Wind River Support Network

HomeDefectsLIN1024-16539
Acknowledged

LIN1024-16539 : Security Advisory - lcms - CVE-2026-41254

Created: Apr 20, 2026    Updated: Apr 28, 2026
Found In Version: 10.24.33.2
Severity: Standard
Applicable for: Wind River Linux LTS 24
Component/s: Userspace

Description

Little CMS (lcms2) through 2.18 has an integer overflow in CubeSize in cmslut.c because the overflow check is performed after the multiplication.
  • Linkedin
  • Facebook
  • Twitter
  • Youtube