CVE-2026-41254

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2026-41254
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-41254.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2026-41254
Aliases
  • GHSA-4xp6-rcgg-m9qq
Downstream
Published
2026-04-18T06:43:13.741Z
Modified
2026-05-01T04:32:46.834147Z
Severity
  • 4.0 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L CVSS Calculator
Summary
[none]
Details

Little CMS (lcms2) through 2.18 has an integer overflow in CubeSize in cmslut.c because the overflow check is performed after the multiplication.

Database specific 
{
    "cwe_ids": [
        "CWE-696"
    ],
    "cna_assigner": "mitre",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/41xxx/CVE-2026-41254.json"
}
References

Affected packages

Git / github.com/mm2/little-cms

Affected ranges

Type
GIT
Repo
https://github.com/mm2/little-cms
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
35b57af4e1a4d6d7a40ba188f9f4efb7857ff511
Database specific 
{
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.18"
        }
    ],
    "source": "AFFECTED_FIELD"
}

Affected versions

2.*
2.11
2.12
lcm2.*
lcm2.16rc1
lcms2-2.*
lcms2-2.7
lcms2.*
lcms2.10
lcms2.10rc1
lcms2.12
lcms2.12rc1
lcms2.12rc2
lcms2.13
lcms2.13.1
lcms2.13rc1
lcms2.15
lcms2.15rc1
lcms2.16rc1
lcms2.17
lcms2.17rc0
lcms2.18
lcms2.18rc_1
lcms2.2
lcms2.2rc0
lcms2.2rc1
lcms2.2rc2
lcms2.3
lcms2.3rc1
lcms2.3rc2
lcms2.3rc3
lcms2.4
lcms2.4rc1
lcms2.4rc2
lcms2.5
lcms2.5rc1
lcms2.5rc2
lcms2.5rc3
lcms2.6
lcms2.6rc0
lcms2.6rc1
lcms2.6rc3
lcms2.7rc1
lcms2.7rc2
lcms2.7rc3
lcms2.8
lcms2.8rc2
lcms2.9
lcms2.9rc1

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2026-41254.json"