Lucene search
China National Vulnerability DatabaseCNVD-2023-01789HistoryDec 23, 2022 - 12:00 a.m.
OpenImageIO code execution vulnerability
2022-12-2300:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
openimageio
image library
code execution
vulnerability
heap buffer overflow
dds scanline parsing
0.005 Low
EPSS
Percentile
76.2%
OpenImageIO is an image read and write library that also provides several tools and applications. a code execution vulnerability exists in the OpenImageIO DDS scanline parsing feature. An attacker could exploit the vulnerability to cause a heap buffer overflow via a specially crafted .dds.
| CPE | Name | Operator | Version |
|---|---|---|---|
| openimageio openimageio 2. | eq | 4.4.2 |
Related
talos
talos
OpenImageIO DDS scanline parsing code execution vulnerability
2022-12-22 00:00:00
prion
prion
Heap overflow
2022-12-22 22:15:00
ubuntucve
ubuntucve
CVE-2022-41838
2022-12-22 00:00:00
cve
cve
CVE-2022-41838
2022-12-22 22:15:15
nvd
nvd
CVE-2022-41838
2022-12-22 22:15:15
osv
osv
CVE-2022-41838
2022-12-22 22:15:15
openimageio - security update
2023-04-05 00:00:00
openimageio - security update
2023-04-10 00:00:00
debiancve
debiancve
CVE-2022-41838
2022-12-22 22:15:15
cvelist
cvelist
CVE-2022-41838
2022-12-22 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: OpenImageIO-2.3.21.0-1.fc36
2022-12-31 01:17:01
openvas
openvas
Fedora: Security Advisory for OpenImageIO (FEDORA-2022-e63bc3eca2)
2022-12-31 00:00:00
Debian: Security Advisory (DLA-3382-1)
2023-04-11 00:00:00
Debian: Security Advisory (DSA-5384-1)
2023-04-11 00:00:00
nessus
nessus
Fedora 36 : OpenImageIO (2022-e63bc3eca2)
2022-12-31 00:00:00
Debian DLA-3382-1 : openimageio - LTS security update
2023-04-10 00:00:00
Debian DSA-5384-1 : openimageio - security update
2023-04-11 00:00:00
debian
debian
[SECURITY] [DLA 3382-1] openimageio security update
2023-04-04 23:34:51
[SECURITY] [DSA 5384-1] openimageio security update
2023-04-10 09:18:20
talosblog
talosblog
mageia
mageia
Updated openimageio packages fix security vulnerability
2023-04-24 03:20:26
gentoo
gentoo
OpenImageIO: Multiple Vulnerabilities
2023-05-30 00:00:00