Wind River Support Network

HomeDefectsLIN1025-9148
Acknowledged

LIN1025-9148 : Security Advisory - lcms - CVE-2026-41254

Created: Apr 20, 2026    Updated: Apr 28, 2026
Found In Version: 10.25.33.2
Severity: Standard
Applicable for: Wind River Linux LTS 25
Component/s: Userspace

Description

Little CMS (lcms2) through 2.18 has an integer overflow in CubeSize in cmslut.c because the overflow check is performed after the multiplication.
  • Linkedin
  • Facebook
  • Twitter
  • Youtube