Lucene search
GoogleOSV:CVE-2022-41639HistoryDec 22, 2022 - 10:15 p.m.
CVE-2022-41639
2022-12-2222:15:14
Google
osv.dev
1
vulnerability
buffer overflow
openimageio
tiff
arbitrary code execution
A heap based buffer overflow vulnerability exists in tile decoding code of TIFF image parser in OpenImageIO master-branch-9aeece7a and v2.3.19.0. A specially-crafted TIFF file can lead to an out of bounds memory corruption, which can result in arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
Related
talos
talos
OpenImageIO TIFF tile pels decoding heap-based buffer overflow
2022-12-22 00:00:00
nvd
nvd
CVE-2022-41639
2022-12-22 22:15:14
ubuntucve
ubuntucve
CVE-2022-41639
2022-12-22 00:00:00
debiancve
debiancve
CVE-2022-41639
2022-12-22 22:15:14
prion
prion
Heap overflow
2022-12-22 22:15:00
cve
cve
CVE-2022-41639
2022-12-22 22:15:14
cvelist
cvelist
CVE-2022-41639
2022-12-22 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: OpenImageIO-2.3.21.0-1.fc36
2022-12-31 01:17:01
openvas
openvas
Fedora: Security Advisory for OpenImageIO (FEDORA-2022-e63bc3eca2)
2022-12-31 00:00:00
Debian: Security Advisory (DLA-3382-1)
2023-04-11 00:00:00
Debian: Security Advisory (DSA-5384-1)
2023-04-11 00:00:00
nessus
nessus
Fedora 36 : OpenImageIO (2022-e63bc3eca2)
2022-12-31 00:00:00
Debian DLA-3382-1 : openimageio - LTS security update
2023-04-10 00:00:00
Debian DSA-5384-1 : openimageio - security update
2023-04-11 00:00:00
osv
osv
openimageio - security update
2023-04-05 00:00:00
openimageio - security update
2023-04-10 00:00:00
debian
debian
[SECURITY] [DLA 3382-1] openimageio security update
2023-04-04 23:34:51
[SECURITY] [DSA 5384-1] openimageio security update
2023-04-10 09:18:20
talosblog
talosblog
mageia
mageia
Updated openimageio packages fix security vulnerability
2023-04-24 03:20:26
gentoo
gentoo
OpenImageIO: Multiple Vulnerabilities
2023-05-30 00:00:00