VYPR
Unrated severityNVD Advisory· Published Mar 18, 2026· Updated Mar 19, 2026

Out-of-bounds array write in Xpdf 4.06 due to missing validation

CVE-2026-4407

Description

Out-of-bounds array write in Xpdf 4.06 and earlier, due to incorrect validation of the "N" field in ICCBased color spaces.

Affected products

2
  • Xpdf/Xpdfllm-fuzzy2 versions
    <=4.06+ 1 more
    • (no CPE)range: <=4.06
    • (no CPE)range: 4.06

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.