Lucene search
PRIOn knowledge basePRION:CVE-2022-43597HistoryDec 22, 2022 - 10:15 p.m.
Memory corruption
2022-12-2222:15:00
PRIOn knowledge base
www.prio-n.com
2
openimageio
memory corruption
iffoutput
padding
vulnerabilities
arbitrary code execution
imageoutput object
malicious input
typedesc::uint8
nvd
Multiple memory corruption vulnerabilities exist in the IFFOutput alignment padding functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to arbitrary code execution. An attacker can provide malicious input to trigger these vulnerabilities.This vulnerability arises when the m_spec.format is TypeDesc::UINT8.
| CPE | Name | Operator | Version |
|---|---|---|---|
| debian_linux | eq | 11.0 | |
| openimageio | eq | 2.4.4.2 |
Related
ubuntucve
ubuntucve
CVE-2022-43597
2022-12-22 00:00:00
debiancve
debiancve
CVE-2022-43597
2022-12-22 22:15:16
osv
osv
CVE-2022-43597
2022-12-22 22:15:16
openimageio - security update
2023-04-05 00:00:00
openimageio - security update
2023-04-10 00:00:00
cvelist
cvelist
CVE-2022-43597
2022-12-22 00:00:00
cve
cve
CVE-2022-43597
2022-12-22 22:15:16
nvd
nvd
CVE-2022-43597
2022-12-22 22:15:16
talos
talos
nessus
nessus
Debian DLA-3382-1 : openimageio - LTS security update
2023-04-10 00:00:00
Debian DSA-5384-1 : openimageio - security update
2023-04-11 00:00:00
GLSA-202305-33 : OpenImageIO: Multiple Vulnerabilities
2023-05-30 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-3382-1)
2023-04-11 00:00:00
Debian: Security Advisory (DSA-5384-1)
2023-04-11 00:00:00
Mageia: Security Advisory (MGASA-2023-0151)
2023-04-24 00:00:00
debian
debian
[SECURITY] [DLA 3382-1] openimageio security update
2023-04-04 23:34:51
[SECURITY] [DSA 5384-1] openimageio security update
2023-04-10 09:18:20
talosblog
talosblog
mageia
mageia
Updated openimageio packages fix security vulnerability
2023-04-24 03:20:26
gentoo
gentoo
OpenImageIO: Multiple Vulnerabilities
2023-05-30 00:00:00