Lucene search
GoogleOSV:CVE-2022-38143HistoryDec 22, 2022 - 10:15 p.m.
CVE-2022-38143
2022-12-2222:15:13
Google
osv.dev
3
openimageio vulnerability
bmp images
arbitrary code execution
malicious file
security issue
A heap out-of-bounds write vulnerability exists in the way OpenImageIO v2.3.19.0 processes RLE encoded BMP images. A specially-crafted bmp file can write to arbitrary out of bounds memory, which can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
Related
ubuntucve
ubuntucve
CVE-2022-38143
2022-12-22 00:00:00
prion
prion
Heap overflow
2022-12-22 22:15:00
cvelist
cvelist
CVE-2022-38143
2022-12-22 00:00:00
talos
talos
OpenImageIO RLE encoded BMP image out-of-bounds write vulnerability
2022-12-22 00:00:00
cve
cve
CVE-2022-38143
2022-12-22 22:15:13
debiancve
debiancve
CVE-2022-38143
2022-12-22 22:15:13
cnvd
cnvd
OpenImageIO heap out-of-bounds write vulnerability
2022-12-23 00:00:00
nvd
nvd
CVE-2022-38143
2022-12-22 22:15:13
nessus
nessus
Fedora 36 : OpenImageIO (2022-e63bc3eca2)
2022-12-31 00:00:00
GLSA-202305-33 : OpenImageIO: Multiple Vulnerabilities
2023-05-30 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: OpenImageIO-2.3.21.0-1.fc36
2022-12-31 01:17:01
openvas
openvas
Fedora: Security Advisory for OpenImageIO (FEDORA-2022-e63bc3eca2)
2022-12-31 00:00:00
Mageia: Security Advisory (MGASA-2023-0151)
2023-04-24 00:00:00
talosblog
talosblog
mageia
mageia
Updated openimageio packages fix security vulnerability
2023-04-24 03:20:26
gentoo
gentoo
OpenImageIO: Multiple Vulnerabilities
2023-05-30 00:00:00