816 matches found
UBUNTU-CVE-2022-43600
Multiple code execution vulnerabilities exist in the IFFOutput::close functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to a heap buffer overflow. An attacker can provide malicious input to trigger these vulnerabilities.This vulnerability...
UBUNTU-CVE-2022-41639
A heap based buffer overflow vulnerability exists in tile decoding code of TIFF image parser in OpenImageIO master-branch-9aeece7a and v2.3.19.0. A specially-crafted TIFF file can lead to an out of bounds memory corruption, which can result in arbitrary code execution. An attacker can provide a...
UBUNTU-CVE-2022-43603
A denial of service vulnerability exists in the ZfileOutput::close functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to denial of service. An attacker can provide a malicious file to trigger this vulnerability...
UBUNTU-CVE-2022-43596
An information disclosure vulnerability exists in the IFFOutput channel interleaving functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to leaked heap data. An attacker can provide malicious input to trigger this vulnerability...
UBUNTU-CVE-2022-43592
An information disclosure vulnerability exists in the DPXOutput::close functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to leaked heap data. An attacker can provide malicious input to trigger this vulnerability...
UBUNTU-CVE-2022-41838
A code execution vulnerability exists in the DDS scanline parsing functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially-crafted .dds can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...
UBUNTU-CVE-2022-41977
An out of bounds read vulnerability exists in the way OpenImageIO version v2.3.19.0 processes string fields in TIFF image files. A specially-crafted TIFF file can lead to information disclosure. An attacker can provide a malicious file to trigger this vulnerability...
Vulnerability Spotlight: OpenImageIO file processing issues could lead to arbitrary code execution, sensitive information leak and denial of service
Lilith of Cisco Talos discovered these vulnerabilities. Cisco Talos recently discovered nineteen vulnerabilities in OpenImageIO, an image processing library, which could lead to sensitive information disclosure, denial of service and heap buffer overflows which could further lead to code executio...
OpenImageIO 缓冲区错误漏洞
OpenImageIO is an image read/write library, along with a number of tools and applications. OpenImageIO suffers from an out-of-bounds write vulnerability, which is caused by an out-of-bounds write flaw in the OpenImageIO::addexixitemtospec function. An attacker could use this vulnerability to...
OpenImageIO 缓冲区错误漏洞
OpenImageIO is an image read/write library, along with a number of tools and applications. OpenImageIO suffers from an information disclosure vulnerability that is caused by an out-of-bounds read flaw in the DPXOutput::close function. An attacker can exploit this vulnerability to obtain sensitive...
OpenImageIO 代码问题漏洞
OpenImageIO is OpenImageIO open source an image processing library . With an easy to use interface and a large number of supported image formats. A code issue vulnerability exists in OpenImageIO version v2.4.4.2, which stems from a denial of service in the ZfileOutput::close function, where a...
OpenImageIO 安全漏洞
A code execution vulnerability exists in the IFFOutput::close function of OpenImageIO v2.4.4.2, an image read/write library that also provides tools and applications. An attacker can exploit this vulnerability to cause a heap buffer overflow via a specially crafted ImageOutput object when the...
OpenImageIO 缓冲区错误漏洞
OpenImageIO is OpenImageIO open source an image processing library . With an easy-to-use interface and a large number of supported image formats. A security vulnerability exists in OpenImageIO master-branch-9aeece7a version, v2.3.19.0, which stems from a heap-based buffer overflow vulnerability i...
OpenImageIO 安全漏洞
A code execution vulnerability exists in the OpenImageIO IFFOutput::close function, which is an image read/write library that also provides tools and applications. An attacker can use this vulnerability to cause a heap buffer overflow via a specially crafted ImageOutput object when the "xmax"...
OpenImageIO 安全漏洞
A code execution vulnerability exists in the OpenImageIO IFFOutput::close function, which is an image read/write library that also provides tools and applications. An attacker can use this vulnerability to cause a heap buffer overflow via a specially crafted ImageOutput object when the "xmax"...
OpenImageIO TIFF file string field information disclosure vulnerability
Talos Vulnerability Report TALOS-2022-1627 OpenImageIO TIFF file string field information disclosure vulnerability December 22, 2022 CVE Number CVE-2022-41977 SUMMARY An out of bounds read vulnerability exists in the way OpenImageIO version v2.3.19.0 processes string fields in TIFF image files. A...
OpenImageIO 缓冲区错误漏洞
OpenImageIO is OpenImageIO open source an image processing library . With an easy-to-use interface and a large number of supported image formats. A buffer error vulnerability exists in the OpenImageIO master-branch-9aeece7a version, which stems from its parsing of the image file directory portion...
OpenImageIO 缓冲区错误漏洞
OpenImageIO is an image read and write library that also provides several tools and applications. OpenImageIO v2.3.19.0 suffers from a heap out-of-bounds read vulnerability when processing IPTC data. An attacker could exploit this vulnerability to read heap memory via specially crafted TIFF files...
OpenImageIO 安全漏洞
OpenImageIO is an image read and write library that also provides several tools and applications. openImageIO is vulnerable to a heap out-of-bounds read vulnerability. An attacker can exploit this vulnerability to read heap metadata out of bounds via specially crafted RLA files, which can lead to...
OpenImageIO 代码问题漏洞
OpenImageIO is OpenImageIO open source an image processing library . With an easy-to-use interface and a large number of supported image formats. OpenImageIO v2.4.4.2 version of the code problem vulnerability , the vulnerability stems from its image output closing function allows attackers to...