Skip to content

Fix: heap-buffer-overflow in SIccCalcOp::Describe() at IccProfLib/IccMpeCalc.cpp #459

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
xsscx merged 1 commit into from
Jan 7, 2026
Merged

Fix: heap-buffer-overflow in SIccCalcOp::Describe() at IccProfLib/IccMpeCalc.cpp #459

xsscx merged 1 commit into from
Jan 7, 2026

Conversation

@ChrisCoxArt
Copy link
Contributor

@ChrisCoxArt ChrisCoxArt commented Jan 7, 2026

Fix limit on number of ops.
add notes about if else ops counts probably being wrong.
Select may be wrong as well, but harder to figure out.
Fixes #454

Pull Request Checklist

  • Have you followed the guidelines in Contributing document?
  • Have you checked to ensure there aren't other open Pull Requests for the same change?
  • Have you built your Pull Request locally with the Build Instructions?
  • Have you added or updated relevant tests?
  • Have you added or updated relevant docs?

@ChrisCoxArt
fix buffer overread in CIccCalculatorFunc::DescribeSequence
1d649db 
Fix limit on number of ops
add notes about if else ops counts probably being wrong.
Select may be wrong as well, but harder to figure out.
Fixes #454
@ChrisCoxArt ChrisCoxArt requested a review from xsscx as a code owner January 7, 2026 02:43
@xsscx xsscx self-assigned this Jan 7, 2026
@xsscx xsscx added PR Pull Request Review in Process PR being Reviewed by Maintainers Security Security Related labels Jan 7, 2026
@xsscx xsscx changed the title fix buffer overread in CIccCalculatorFunc::DescribeSequence Fix: heap-buffer-overflow in SIccCalcOp::Describe() at IccProfLib/IccMpeCalc.cpp Jan 7, 2026
xsscx
xsscx approved these changes Jan 7, 2026
View reviewed changes
Copy link
Member

@xsscx xsscx left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

2026-01-07 02:52:40 (70.4 MB/s) - ‘SIccCalcOp-Describe-IccProfLib-IccMpeCalc_cpp_L1816.icc’ saved [3936/3936]

xss@W5:~/pr459/iccDEV/Testing$ iccToXml SIccCalcOp-Describe-IccProfLib-IccMpeCalc_cpp_L1816.icc SIccCalcOp-Describe-IccProfLib-IccMpeCalc_cpp_L1816.xml
XML successfully created
xss@W5:~/pr459/iccDEV/Testing$ git rev-parse HEAD && git show --no-patch --oneline
1d649dbf833015e0416894d479b6affbd24253d7
1d649db (HEAD -> pr-459, origin/issue-454) fix buffer overread in CIccCalculatorFunc::DescribeSequence
xss@W5:~/pr459/iccDEV/Testing$ date
Wed Jan  7 02:53:36 AM UTC 2026

@xsscx xsscx added Pending Merge Maintainer indicates Merge Pending and requests no further changes and removed Review in Process PR being Reviewed by Maintainers labels Jan 7, 2026
@xsscx xsscx merged commit 61e2514 into master Jan 7, 2026
25 checks passed
@xsscx xsscx added Merged Merged CVE Requested Maintainer indicates a CVE has been Requested and removed Pending Merge Maintainer indicates Merge Pending and requests no further changes labels Jan 7, 2026
@xsscx
Copy link
Member

xsscx commented Jan 7, 2026

GHSA-22q7-8347-79m5

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@xsscx xsscx xsscx approved these changes

Assignees

@xsscx xsscx

Labels

CVE Requested Maintainer indicates a CVE has been Requested Merged Merged PR Pull Request Security Security Related

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

heap-buffer-overflow in SIccCalcOp::Describe() at IccProfLib/IccMpeCalc.cpp:2988:9

3 participants

@ChrisCoxArt @xsscx